Package: release.debian.org Severity: normal User: release.debian....@packages.debian.org Usertags: unblock
Please unblock package icu This patch fixes ICU bug 702982, severity "important". The bug fix is a one-line (actually one character) change to a table in ICU that fixes a potential crash rendering incremental Malayalam text input. This patch has been applied upstream, and upstream has encouraged distributions to take it. The Ubuntu version of ICU already includes this patch. Since this is a bug of priority "important" (which I set it to because a crash caused by a particular pattern of characters is a potential DOS attack) and the package can go into testing through unstable, I hope you will grant the unblock request. Thanks for considering. unblock icu/4.8.1.1-11 -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash
diff -Nru icu-4.8.1.1/debian/changelog icu-4.8.1.1/debian/changelog --- icu-4.8.1.1/debian/changelog 2012-11-17 14:37:40.000000000 -0500 +++ icu-4.8.1.1/debian/changelog 2013-03-16 14:58:26.000000000 -0400 @@ -1,3 +1,10 @@ +icu (4.8.1.1-11) unstable; urgency=medium + + * Fix crash on rendering incremental Malayalam text input. Thanks Colin + Watson. (Closes: #702982) + + -- Jay Berkenbilt <q...@debian.org> Sat, 16 Mar 2013 14:58:15 -0400 + icu (4.8.1.1-10) unstable; urgency=low * Include pkg-config files in dev package. Thanks Tommi Vainikainen. diff -Nru icu-4.8.1.1/debian/patches/mlym-crash.patch icu-4.8.1.1/debian/patches/mlym-crash.patch --- icu-4.8.1.1/debian/patches/mlym-crash.patch 1969-12-31 19:00:00.000000000 -0500 +++ icu-4.8.1.1/debian/patches/mlym-crash.patch 2013-03-16 14:56:23.000000000 -0400 @@ -0,0 +1,19 @@ +Description: Fix crash on rendering incremental Malayalam text input +Author: Caolán McNamara <caol...@redhat.com> +Origin: other, https://ssl.icu-project.org/trac/ticket/9948 +Forwarded: https://ssl.icu-project.org/trac/ticket/9948 +Last-Update: 2013-03-13 + +Index: b/source/layout/IndicClassTables.cpp +=================================================================== +--- a/source/layout/IndicClassTables.cpp ++++ b/source/layout/IndicClassTables.cpp +@@ -273,7 +273,7 @@ + + static const IndicClassTable kndaClassTable = {0x0C80, 0x0CEF, 4, KNDA_SCRIPT_FLAGS, kndaCharClasses, kndaSplitTable}; + +-static const IndicClassTable mlymClassTable = {0x0D00, 0x0D6F, 3, MLYM_SCRIPT_FLAGS, mlymCharClasses, mlymSplitTable}; ++static const IndicClassTable mlymClassTable = {0x0D00, 0x0D6F, 4, MLYM_SCRIPT_FLAGS, mlymCharClasses, mlymSplitTable}; + + static const IndicClassTable sinhClassTable = {0x0D80, 0x0DF4, 4, SINH_SCRIPT_FLAGS, sinhCharClasses, sinhSplitTable}; + diff -Nru icu-4.8.1.1/debian/patches/series icu-4.8.1.1/debian/patches/series --- icu-4.8.1.1/debian/patches/series 2012-05-24 13:52:17.000000000 -0400 +++ icu-4.8.1.1/debian/patches/series 2013-03-16 14:55:46.000000000 -0400 @@ -8,3 +8,4 @@ pathmax.patch CVE-2011-4599.patch indic-ccmp.patch +mlym-crash.patch
