Branches for Quantal

Author: Till Kamppeter
Revision Date: 2012-09-25 06:15:07 UTC

debian/patches/texttopdf-fix-deficient-string-escaping.patch: Fixed
unsufficient string escaping in texttopdf (Upstream bug #1071).

Author: Till Kamppeter
Revision Date: 2012-11-29 16:59:59 UTC

* debian/patches/pdftopdf-landscape-fix.patch: Auto-rotate functionality
  added to pdftopdf to print landscape-formatted PDFs (for example from
  LibreOffice) correctly (LP: #1040037, Upstream bug #1080).
* debian/patches/pdftopdf-multiple-copies-collate-fix.patch: The pdftopdf
  filter started the second copy of a duplex job with an odd number of
  pages on the back side of the last page of the first copy. Thanks to
  David Williams from Ricoh for reporting this and to Tobias Hoffmann for
  fixing this (LP: #1084534).
* debian/rules: Added "DEB_DH_FIXPERMS_ARGS := -Xusr/lib/cups/backend" to not
  correct the permissions of CUPS backends (LP: #1076786).

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:01:42 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    filter/pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    filter/pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:01:42 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    filter/pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    filter/pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476