[Secure-testing-team] patch for CVE-2009-0146, 0147, 0755 in poppler in lenny

[Michael S Gilbert]

hello,

i have developed a patched for lenny derived from ubuntu's patches for
a set of recent JBIG2 poppler/xpdf issues and an upstream patch for
2009-0755.  see attached.  here are my notes on the work:

- 2009-0756 already applied (pdf demonstrator did not crash evince
with vanilla lenny-security poppler)
- 2009-0755 i applied fixes from upstream patch (ubuntu patch does not
contain the fix for this; tested before and after against sample
file); also this is apparently just a dos
- 2009-0146/0147 i applied fixes from ubuntu patch
- i also applied a couple additional fixes to use gmallocn from the
ubuntu patch, but i couldn't find a reference CVE for these changes

- note that key info for 0146/147/0166 is restricted in embargoed
redhat bug https://bugzilla.redhat.com/attachment.cgi?id=336465, can
someone who has access to this check to see if anything important is
there?
- my best guess is that the fix for 2009-0166 is very likely already
applied; i checked against gentoo patch
(http://bugs.gentoo.org/attachment.cgi?id=187654) which claims to fix
all 0146/0147/0166 and more; all of the changes in thier patch were
already applied in the previous debian patch for this batch of CVEs

i plan to generate a patch for etch also, but will not have any free
time tomorrow.  i should be able to get to it on sunday.

mike
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 12_CVE_2009-0146_2009-0147_2009-0755
Type: application/octet-stream
Size: 2261 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20090801/b58550a8/attachment.obj>