ubuntu/+source/ghostscript:applied/ubuntu/disco-security

Last commit made on 2019-08-29
Get this branch:
git clone -b applied/ubuntu/disco-security https://git.launchpad.net/ubuntu/+source/ghostscript
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/disco-security
Repository:
lp:ubuntu/+source/ghostscript

Recent commits

be91b92... by Steve Beattie on 2019-08-28

Import patches-applied version 9.26~dfsg+0-0ubuntu7.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: f3a5bc3e0043b556bae97b017319aa2fe6e49346
Unapplied parent: ff2f73cc0b5aa266ae5654987e612d4f6fe56f34

New changelog entries:
  * SECURITY UPDATE: '-dSAFER' restrictions bypass by .forceput
    Exposures
    - debian/patches/CVE-2019-14811-CVE-2019-14812-CVE-2019-14813.patch:
      Be more defensive by preventing access to .forceput from
      .setuserparams2.
    - CVE-2019-14811
    - CVE-2019-14812
    - CVE-2019-14813
    - debian/patches/CVE-2019-14817.patch: mark more uses of .forceput
      as execteonly
    - CVE-2019-14817

ff2f73c... by Steve Beattie on 2019-08-28

[PATCH] PDF interpreter - review .forceput security

Gbp-Pq: CVE-2019-14817.patch.

9c08e61... by Steve Beattie on 2019-08-28

[PATCH] make .forceput inaccessible

Gbp-Pq: CVE-2019-14811-CVE-2019-14812-CVE-2019-14813.patch.

0afdfb4... by Steve Beattie on 2019-08-28

[PATCH] Bug 701394: protect use of .forceput with executeonly

Gbp-Pq: CVE-2019-10216.patch.

c832a13... by Steve Beattie on 2019-08-28

[PATCH] Fix lib/pdf2dsc.ps to use documented Ghostscript pdf

Gbp-Pq: CVE-2019-3839-2.patch.

75b8f6d... by Steve Beattie on 2019-08-28

[PATCH] Hide pdfdict and GS_PDF_ProcSet (internal stuff for the PDF

Gbp-Pq: CVE-2019-3839-1.patch.

6d71aed... by Steve Beattie on 2019-08-28

[PATCH] Bug 700576(redux): an extra transient proc needs

Gbp-Pq: CVE-2019-3838-2.patch.

9faa251... by Steve Beattie on 2019-08-28

[PATCH] Bug 700576: Make a transient proc executeonly (in

Gbp-Pq: CVE-2019-3838-1.patch.

47dd886... by Steve Beattie on 2019-08-28

[PATCH] Bug 700585: Obliterate "superexec". We don't need it, nor do

Gbp-Pq: CVE-2019-3835-2.patch.

e9c81ed... by Steve Beattie on 2019-08-28

[PATCH] Fix bug 700585: Restrict superexec and remove it from

Gbp-Pq: CVE-2019-3835-1.patch.