lp:ubuntu/intrepid-updates/ghostscript
- Get this branch:
- bzr branch lp:ubuntu/intrepid-updates/ghostscript
Branch merges
Branch information
Recent revisions
- 32. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via BaseFont writer module
- debian/patches/ 74_CVE- 2008-6679. dpatch: increase size of buffer in
src/gdevpdtb.c.
- CVE-2008-6679
* SECURITY UPDATE: possible arbitrary code execution via JBIG2 symbol
dictionary segments
- debian/patches/ 75_CVE- 2009-0196. dpatch: validate size of runlength
in export symbol table in jbig2dec/jbig2_symbol_ dict.c.
- CVE-2009-0196
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via integer overflows in icclib
- debian/patches/ 76_CVE- 2009-0792. dpatch: fix numerous overflows in
icclib/icc.c.
- CVE-2009-0792 - 31. By Marc Deslauriers
-
* SECURITY UPDATE: Arbitrary code execution due to integer overflows and
insufficient upper-bounds checks in the ICC library
- debian/patches/ 73_CVE- 2009-0583_ 0584.dpatch: fix multiple integer
overflows and perform bounds checking in icclib/icc.c.
- CVE-2009-0583
- CVE-2009-0584 - 30. By Till Kamppeter
-
* debian/
patches/ 42_gs-init- ps-delaybind- fix.dpatch: Make "ps2ascii" working
again (LP: #281419, upstream bug #690124).* debian/
patches/ 45_bjc600- bjc800- pdf-input. dpatch: Fix setting of the
"DitheringType" option. With PDF input Ghostscript crashes, with
PostScript input the "DitheringType" option was probably ignored
(Upstream bug #690032).* debian/
patches/ 48_cups- output- device- pdf-duplex- uninitialized- memory. patch.dpatch:
Fixed several bugs in the "cups" (CUPS Raster) output device:
- Ghostscript crashed with PDF input data
- The "Duplex" and "MediaWeight" options were ignored
- There was uninitialized memory and wrong usage of pointers, potential
cause for segmentation faults or even vulnerabilities
- There were mismatches in data types, leading to possible breakage
of the "AdvanceDistance", "MediaWeight", and "cupsStringXX" options.
(Upstream bug #690101). - 29. By Till Kamppeter
-
* debian/
patches/ 38_pxl- duplex. dpatch: The Duplex option of the "pxlmono"
and "pxlcolor" drivers did not work (part 1 of the fix for LP: #282738).* debian/
patches/ 39_pxl- resolution. dpatch: The resolution must be also set
as PJL command for the "pxlmono" and "pxlcolor" drivers. - 28. By Steve Langasek
-
* debian/control, debian/rules: Merge ghostscript-fonts back into
ghostscript, since this is not needed at present.
* debian/rules: Drop most of the fonts from ghostscript since gsfonts
ships newer versions. - 27. By Till Kamppeter
-
* debian/rules: Fixed typo (LP: #256975).
* debian/ghostscript. links: s/8.62/8.63/
* debian/patches/ 35_disable_ libcairo. dpatch: Added possibility to
compile Ghostscript without the "cairo" output device. The device
is still in experimental state and with its dependency on libcairo
it pulls in a dependency on X.
* debian/control, debian/rules: Build Ghostscript without the "cairo"
output device (LP: #256859). - 26. By Till Kamppeter
-
debian/control, debian/rules: Split the fonts off into its own
"ghostscript-fonts" package. Changes dependencies of "ghostscript"
package that either "ghostscript-fonts" or "gsfonts" can be used. - 25. By Till Kamppeter
-
* New upstream release
* Merge from debian unstable, remaining changes:
- gs-esp and gs-common depend only on ghostscript, not on ghostscript-x,
as gs-esp had already split off gs-esp-x in Ubuntu
* debian/patches/ 12_gs-cjk_ vertical_ writing_ metrics_ fix.dpatch,
debian/patches/ 30_ps2pdf_ man_improvement .dpatch: Adapted to upstream
changes.
* debian/control: Added libcairo2-dev to the build dependencies, as
Ghostscript has a libcairo-based output device now. - 24. By Till Kamppeter
-
* Merge from debian unstable, remaining changes:
- gs-esp and gs-common depend only on ghostscript, not on ghostscript-x,
as gs-esp had already split off gs-esp-x in Ubuntu
* debian/libgs8. shlibs: Removed. All libgs8 versions should have the same
API and ABI. The artificial restriction set by this file required all
reverse dependencies to be rebuilt for every stable release of Ghostscript.
* debian/ghostscript. doc-base: Removed. The file conflicts with the
corresponding file of ghostscript-doc and it also points to documentation
files which make only part of ghostscript-doc, so the files can be not
installed when this doc-base file is installed.
* debian/ghostscript- doc.doc- base: Corrected file mask for all HTML files.
The Ghostscript documentation is in *.htm files. - 23. By Jamie Strandboge
-
* SECURITY UPDATE: buffer overflow in color space handling code
* debian/patches/ 31_CVE- 2008-0411. dpatch: fix zseticcspace() to perform
range checks
* References
CVE-2008-0411
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/ghostscript