ubuntu/+source/ghostscript:ubuntu/trusty-devel

Last commit made on 2019-03-21
Get this branch:
git clone -b ubuntu/trusty-devel https://git.launchpad.net/ubuntu/+source/ghostscript
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/trusty-devel
Repository:
lp:ubuntu/+source/ghostscript

Recent commits

f9d2a9a... by Marc Deslauriers on 2019-03-19

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.8 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: cc3bfa49fb782465af01f897a5773b6d3d3b68d0

New changelog entries:
  * SECURITY UPDATE: superexec operator is available
    - debian/patches/CVE-2019-3835-pre1.patch: Have gs_cet.ps run from
      gs_init.ps in Resource/Init/gs_cet.ps, Resource/Init/gs_init.ps.
    - debian/patches/CVE-2019-3835-pre2.patch: Undef /odef in
      Resource/Init/gs_cet.ps, Resource/Init/gs_init.ps.
    - debian/patches/CVE-2019-3835-1.patch: restrict superexec and remove
      it in Resource/Init/gs_cet.ps, Resource/Init/gs_dps1.ps,
      Resource/Init/gs_fonts.ps, Resource/Init/gs_init.ps,
      Resource/Init/gs_ttf.ps, Resource/Init/gs_type1.ps.
    - debian/patches/CVE-2019-3835-2.patch: obliterate superexec in
      Resource/Init/gs_init.ps, psi/icontext.c, psi/icstate.h,
      psi/zcontrol.c, psi/zdict.c, psi/zgeneric.c.
    - CVE-2019-3835
  * SECURITY UPDATE: forceput in DefineResource is still accessible
    - debian/patches/CVE-2019-3838-1.patch: make a transient proc
      executeonly in Resource/Init/gs_res.ps.
    - debian/patches/CVE-2019-3838-2.patch: an extra transient proc needs
      executeonly in Resource/Init/gs_res.ps.
    - CVE-2019-3838

cc3bfa4... by Marc Deslauriers on 2019-02-25

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.7 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 75b1dfb7569ca2cce61472d48c50aba8db01eb7c

New changelog entries:
  * SECURITY REGRESSION: High RIP_MAX_CACHE makes cups output device fail,
    second fix attempt. (LP: #1815339)
    - debian/patches/lp1815339.patch: re-enable.
    - debian/patches/lp1815339-2.patch: properly map RGBW color space in
      cups/gdevcups.c.

75b1dfb... by Chris Coulson on 2019-02-23

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.6 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: c4fd039fdfef3e9f5f3ee7733b483320ce554de5

New changelog entries:
  * SECURITY REGRESSION: Ghostscript update causes blue background
    (LP: #1817308)
    - disable debian/patches/lp1815339.patch

c4fd039... by Marc Deslauriers on 2019-02-20

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.5 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 1e10886172a2a71259d223444c259bb591aa2c47

New changelog entries:
  * SECURITY REGRESSION: High RIP_MAX_CACHE makes cups output device fail
    (LP: #1815339)
    - debian/patches/lp1815339.patch: fix logic in cups/gdevcups.c.
  * debian/symbols.common: add new symbol missing in previous update.

1e10886... by Marc Deslauriers on 2019-01-16

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 7a5f8ca38c47a2c1d5bd0770d3a9fec250a1354d

New changelog entries:
  * SECURITY UPDATE: code execution vulnerability
    - debian/patches/CVE-2019-6116.patch: address .force* operators
      exposure in Resource/Init/gs_diskn.ps, Resource/Init/gs_dps1.ps,
      Resource/Init/gs_fntem.ps, Resource/Init/gs_fonts.ps,
      Resource/Init/gs_init.ps, Resource/Init/gs_lev2.ps,
      Resource/Init/gs_pdfwr.ps, Resource/Init/gs_res.ps,
      Resource/Init/gs_setpd.ps, Resource/Init/pdf_base.ps,
      Resource/Init/pdf_draw.ps, Resource/Init/pdf_font.ps,
      Resource/Init/pdf_main.ps, Resource/Init/pdf_ops.ps,
      psi/int.mak, psi/interp.c, psi/istack.c, psi/istack.h.
    - CVE-2019-6116

7a5f8ca... by Marc Deslauriers on 2018-12-06

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.3 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: b4ee674f8a45e693ce80cea850ec540235d6b341

New changelog entries:
  * SECURITY REGRESSION: multiple regressions (LP: #1806517)
    - debian/patches/020181126-96c381c*.patch: fix duplex issue.
    - debian/patches/020181205-fae21f16*.patch: fix -dFirstPage and
      -dLastPage issue.

b4ee674... by Marc Deslauriers on 2018-11-28

Import patches-unapplied version 9.26~dfsg+0-0ubuntu0.14.04.1 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: e5dd3261c81140c7d8ea7b646844cf9ad7626fc8

New changelog entries:
  * SECURITY UPDATE: Updated to 9.26 to fix multiple security issues
    - CVE-2018-19409
    - CVE-2018-19475
    - CVE-2018-19476
    - CVE-2018-19477
  * Removed patches included in new version:
    - debian/patches/0218*.patch
    - debian/patches/lp1800062.patch
  * debian/symbols.common: updated for new version.

e5dd326... by Ioanna Alifieraki on 2018-11-12

Import patches-unapplied version 9.25~dfsg+1-0ubuntu0.14.04.3 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 417912b1509cc3d22c579f167d1994126f289962

New changelog entries:
  * Fix dependency for libgs9-common (LP: #1802958)

417912b... by Marc Deslauriers on 2018-10-30

Import patches-unapplied version 9.25~dfsg+1-0ubuntu0.14.04.2 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 69b3e7673470857b3ee40dc20574e83dbb984f0e

New changelog entries:
  * SECURITY UPDATE: Multiple security issues
    - debian/patches/0218*.patch: multiple cherry-picked upstream commits
      to fix security issues. Thanks to Jonas Smedegaard for cherry-picking
      these for Debian's 9.25~dfsg-3 package.
    - debian/symbols.common: added new symbol.
    - CVE-2018-17961
    - CVE-2018-18073
    - CVE-2018-18284
  * Fix LeadingEdge regression introduced in 9.22. (LP: #1800062)
    - debian/patches/lp1800062.patch: fix cups get/put_params LeadingEdge
      logic in cups/gdevcups.c.

69b3e76... by Marc Deslauriers on 2018-09-27

Import patches-unapplied version 9.25~dfsg+1-0ubuntu0.14.04.1 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: e18dde5ad234fbd4a53414af088dac596b93fceb

New changelog entries:
  * SECURITY UPDATE: updated to 9.25 to fix multiple security issues
    - Previous security release contained an incomplete fix for
      CVE-2018-16510, and there are many other security fixes and
      improvements that went into the new upstream version without getting
      CVE numbers assigned.
    - CVE-2018-16510
    - CVE-2018-17183
  * Packages changes required for new version:
    - debian/patches/CVE*: removed, included in new version.
    - debian/patches/*: updated from cosmic package.
    - debian/copyright*: updated from cosmic package.
    - debian/rules, debian/libgs-dev.install: remove static library.
    - debian/symbols.common: updated for new version.
    - debian/rules: use bundled lcms2 as trusty version is too old.