[ Till Kamppeter ]
* debian/local/filters/pdf-filters/pdftopdf/P2PPage.cxx,
debian/local/filters/pdf-filters/pdftopdf/pdftopdf.cxx: Do not reposition
the pages when an automatic rotation did not actually take place and
do not apply the page size and margins from the PPD file or the coomand
line if no manipulations affecting the printout size are done (N-up,
scaling, fitplot, ...). This caused LP: #310575.
* debian/cups.postinst: Let the PPD files of the existing print queues get
automatically updated after each installation of this package (if they
use PPDs of this package).
[ Marc Deslauriers ]
* SECURITY UPDATE: denial of service by adding a large number of RSS
subscriptions (Closes: #506180, LP: #298241)
- debian/patches/CVE-2008-5183.dpatch: gracefully handle MaxSubscriptions
being reached in scheduler/{ipp.c,subscriptions.c}
- CVE-2008-5183
[ Martin Pitt ]
* pidfile.dpatch: Adapt to changes from MaxSubscriptions fix from
above.
-- Martin Pitt <email address hidden> Sun, 25 Jan 2009 12:05:44 +0100
This bug was fixed in the package cups - 1.3.9-12
---------------
cups (1.3.9-12) experimental; urgency=low
[ Till Kamppeter ] local/filters/ pdf-filters/ pdftopdf/ P2PPage. cxx, local/filters/ pdf-filters/ pdftopdf/ pdftopdf. cxx: Do not reposition
* debian/
debian/
the pages when an automatic rotation did not actually take place and
do not apply the page size and margins from the PPD file or the coomand
line if no manipulations affecting the printout size are done (N-up,
scaling, fitplot, ...). This caused LP: #310575.
* debian/ cups.postinst: Let the PPD files of the existing print queues get
automatically updated after each installation of this package (if they
use PPDs of this package).
[ Marc Deslauriers ] patches/ CVE-2008- 5183.dpatch: gracefully handle MaxSubscriptions {ipp.c, subscriptions. c}
* SECURITY UPDATE: denial of service by adding a large number of RSS
subscriptions (Closes: #506180, LP: #298241)
- debian/
being reached in scheduler/
- CVE-2008-5183
[ Martin Pitt ]
* pidfile.dpatch: Adapt to changes from MaxSubscriptions fix from
above.
-- Martin Pitt <email address hidden> Sun, 25 Jan 2009 12:05:44 +0100