[prev in list] [next in list] [prev in thread] [next in thread]
List: koffice-devel
Subject: lcms requirement to be up to 1.18
From: Cyrille Berger <cberger () cberger ! net>
Date: 2009-04-03 8:52:49
Message-ID: 200904031052.50101.cberger () cberger ! net
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi,
We have discovered that a poorly craft patch for a security fix in lcms 1.17
(as far as I know distribution including the fix are Fedora Core, OpenSuse and
Ubuntu) trigger a major issue in krita (it breaks loading of nearly all .kra
files), the recently released 1.18 doesn't have, either the security issue, nor
the problem, since even if we were to write a better patch for lcms, it is now
impossible to be certain that the installed lcms 1.17 isn't contaminated.
Which means that in a week, we will have to up the requirement for both branch
and trunk to lcms 1.18.
--
Cyrille Berger
[Attachment #5 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0//EN" \
"http://www.w3.org/TR/REC-html40/strict.dtd"><html><head><meta name="qrichtext" \
content="1" /><style type="text/css">p, li { white-space: pre-wrap; \
}</style></head><body style=" font-family:'DejaVu Sans'; font-size:9pt; \
font-weight:400; font-style:normal;">Hi,<br> <p style="-qt-paragraph-type:empty; \
margin-top:0px; margin-bottom:0px; margin-left:0px; margin-right:0px; \
-qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><br></p>We have discovered \
that a poorly craft patch for a security fix in lcms 1.17 <br> (as far as I know \
distribution including the fix are Fedora Core, OpenSuse and <br> Ubuntu) trigger a \
major issue in krita (it breaks loading of nearly all .kra <br> files), the recently \
released 1.18 doesn't have, either the security issue, nor <br> the problem, since \
even if we were to write a better patch for lcms, it is now <br> impossible to be \
certain that the installed lcms 1.17 isn't contaminated.<br> <p \
style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px; margin-left:0px; \
margin-right:0px; -qt-block-indent:0; text-indent:0px; \
-qt-user-state:0;"><br></p>Which means that in a week, we will have to up the \
requirement for both branch and trunk to lcms 1.18.<br> <p \
style="-qt-paragraph-type:empty; margin-top:0px; margin-bottom:0px; margin-left:0px; \
margin-right:0px; -qt-block-indent:0; text-indent:0px; -qt-user-state:0;"><br></p>-- \
<br> Cyrille Berger</p></body></html>
_______________________________________________
koffice-devel mailing list
koffice-devel@kde.org
https://mail.kde.org/mailman/listinfo/koffice-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic