apoleon

From: Markus Koschany <apo@debian.org>
Date: Sun, 8 May 2022 20:39:48 +0200
Subject: json

---
 .../java/org/odftoolkit/odfdom/changes/ChangesFileSaxHandler.java   | 4 ++--
 .../java/org/odftoolkit/odfdom/changes/JsonOperationConsumer.java   | 2 +-
 .../java/org/odftoolkit/odfdom/changes/JsonOperationNormalizer.java | 6 +++---
 .../java/org/odftoolkit/odfdom/changes/JsonOperationProducer.java   | 6 +++---
 src/main/java/org/odftoolkit/odfdom/changes/ShapeProperties.java    | 4 ++--

apoleon

From: Markus Koschany <apo@debian.org>
Date: Fri, 11 Jan 2019 16:59:12 +0100
Subject: fix overflow on 32bit systems

---
 src/common-image.c | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/src/common-image.c b/src/common-image.c
index 8f5cd15..a17329c 100644

apoleon

From: Markus Koschany <apo@debian.org>
Date: Tue, 1 Jan 2019 17:20:00 +0100
Subject: CVE-2018-19541

The index v of lutents[v] will be negative if numlutents is smaller than 1.
This causes the heap-based buffer overflow because the lutents[] starts at 0.

Bug-Upstream: https://github.com/mdadams/jasper/issues/182
---
 src/libjasper/base/jas_image.c | 3 +++

apoleon

From: Markus Koschany <apo@debian.org>
Date: Tue, 1 Jan 2019 18:41:34 +0100
Subject: CVE-2018-19540

If the asclen value is smaller than 1 the array index will be negative
which causes the heap-based overflow.

Bug-Upstream: https://github.com/mdadams/jasper/issues/182
---
 src/libjasper/base/jas_icc.c | 2 ++

apoleon

From: Markus Koschany <apo@debian.org>
Date: Thu, 6 Dec 2018 16:29:10 +0100
Subject: CVE-2018-19542

Check for possible NULL pointer. This is the inofficial fix
for the reported bug number 4.

Bug-Upstream: https://github.com/mdadams/jasper/issues/182
---
 src/libjasper/jp2/jp2_dec.c | 3 +++

apoleon

From: Markus Koschany <apo@debian.org>
Date: Thu, 3 Jan 2019 10:41:52 +0100
Subject: CVE-2018-19539

---
 src/libjasper/base/jas_image.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/libjasper/base/jas_image.c b/src/libjasper/base/jas_image.c
index 00f37cd..92777c3 100644

apoleon

From: Markus Koschany <apo@debian.org>
Date: Thu, 3 Jan 2019 10:55:16 +0100
Subject: CVE-2018-18873

---
 src/libjasper/ras/ras_enc.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/libjasper/ras/ras_enc.c b/src/libjasper/ras/ras_enc.c
index 6e651bd..aaeff19 100644

apoleon

From: Markus Koschany <apo@debian.org>
Date: Sun, 28 Oct 2018 22:01:27 +0100
Subject: 90_respect_deb_build_options

Forwarded: https://github.com/fbergo/eboard/issues/4
---
 configure | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/configure b/configure

apoleon

From: Markus Koschany <apo@debian.org>
Date: Sun, 28 Oct 2018 22:01:27 +0100
Subject: 90_respect_deb_build_options

---
 configure | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/configure b/configure
index b859211..d31ef1c 100755

apoleon

From: Markus Koschany <apo@debian.org>
Date: Sun, 28 Oct 2018 21:06:33 +0100
Subject: hungarian translation

---
 multilang/eboard.hu.po | 2 +-
 multilang/eboard.ja.po | 2 +-
 multilang/harvest.in   | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)