-
ghostscript (8.63.dfsg.1-0ubuntu6.4) intrepid-security; urgency=low
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via BaseFont writer module
- debian/patches/74_CVE-2008-6679.dpatch: increase size of buffer in
src/gdevpdtb.c.
- CVE-2008-6679
* SECURITY UPDATE: possible arbitrary code execution via JBIG2 symbol
dictionary segments
- debian/patches/75_CVE-2009-0196.dpatch: validate size of runlength
in export symbol table in jbig2dec/jbig2_symbol_dict.c.
- CVE-2009-0196
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via integer overflows in icclib
- debian/patches/76_CVE-2009-0792.dpatch: fix numerous overflows in
icclib/icc.c.
- CVE-2009-0792
-- Marc Deslauriers <email address hidden> Thu, 09 Apr 2009 10:23:53 -0400
-
ghostscript (8.63.dfsg.1-0ubuntu6.3) intrepid-security; urgency=low
* SECURITY UPDATE: Arbitrary code execution due to integer overflows and
insufficient upper-bounds checks in the ICC library
- debian/patches/73_CVE-2009-0583_0584.dpatch: fix multiple integer
overflows and perform bounds checking in icclib/icc.c.
- CVE-2009-0583
- CVE-2009-0584
-- Marc Deslauriers <email address hidden> Mon, 23 Mar 2009 07:49:10 -0400
-
ghostscript (8.63.dfsg.1-0ubuntu6.2) intrepid-proposed; urgency=low
* debian/patches/72_gs-setpd-ps-duplex-fix.dpatch: Duplex printing did not
work in some cases (LP: #308817).
-- Till Kamppeter <email address hidden> Thu, 22 Jan 2008 16:39:22 +0100
-
ghostscript (8.63.dfsg.1-0ubuntu6.1) intrepid-proposed; urgency=low
* debian/patches/70_take-into-account-data-in-stream-buffer-before-refill.dpatch:
Certain files lead to a Ghostscript error due to wrong handling of the
stream buffer (LP: #306125, upstream bug #690090).
* debian/patches/65_too-big-temp-files-1.dpatch,
debian/patches/67_too-big-temp-files-2.dpatch: Ghostscript produced much too
big temporary files (> 10 GB) when printing photos from GNOME apps in
1200 dpi (LP: #288570, upstream bug #690133).
* debian/patches/62_onebitcmyk-pdf.dpatch: Check the whole Decode array to
detect special cases of identity and inverse decoding in PDF files
(Upstream bug #690178).
* debian/patches/50_lips4-floating-point-exception: Fixed floating-point
exception in "lips4" and other drivers (Upstream bug #690122).
-- Till Kamppeter <email address hidden> Mon, 15 Dec 2008 09:01:22 +0100
-
ghostscript (8.63.dfsg.1-0ubuntu6) intrepid; urgency=low
* debian/patches/42_gs-init-ps-delaybind-fix.dpatch: Make "ps2ascii" working
again (LP: #281419, upstream bug #690124).
* debian/patches/45_bjc600-bjc800-pdf-input.dpatch: Fix setting of the
"DitheringType" option. With PDF input Ghostscript crashes, with
PostScript input the "DitheringType" option was probably ignored
(Upstream bug #690032).
* debian/patches/48_cups-output-device-pdf-duplex-uninitialized-memory.patch.dpatch:
Fixed several bugs in the "cups" (CUPS Raster) output device:
- Ghostscript crashed with PDF input data
- The "Duplex" and "MediaWeight" options were ignored
- There was uninitialized memory and wrong usage of pointers, potential
cause for segmentation faults or even vulnerabilities
- There were mismatches in data types, leading to possible breakage
of the "AdvanceDistance", "MediaWeight", and "cupsStringXX" options.
(Upstream bug #690101).
-- Till Kamppeter <email address hidden> Sun, 19 Oct 2008 12:48:22 +0200
-
ghostscript (8.63.dfsg.1-0ubuntu5) intrepid; urgency=low
* debian/patches/38_pxl-duplex.dpatch: The Duplex option of the "pxlmono"
and "pxlcolor" drivers did not work (part 1 of the fix for LP: #282738).
* debian/patches/39_pxl-resolution.dpatch: The resolution must be also set
as PJL command for the "pxlmono" and "pxlcolor" drivers.
-- Till Kamppeter <email address hidden> Mon, 13 Oct 2008 22:55:22 +0200
-
ghostscript (8.63.dfsg.1-0ubuntu4) intrepid; urgency=low
* debian/control, debian/rules: Merge ghostscript-fonts back into
ghostscript, since this is not needed at present.
* debian/rules: Drop most of the fonts from ghostscript since gsfonts
ships newer versions.
-- Steve Langasek <email address hidden> Thu, 21 Aug 2008 07:29:40 +0000
-
ghostscript (8.63.dfsg.1-0ubuntu3) intrepid; urgency=low
* debian/rules: Fixed typo (LP: #256975).
* debian/ghostscript.links: s/8.62/8.63/
* debian/patches/35_disable_libcairo.dpatch: Added possibility to
compile Ghostscript without the "cairo" output device. The device
is still in experimental state and with its dependency on libcairo
it pulls in a dependency on X.
* debian/control, debian/rules: Build Ghostscript without the "cairo"
output device (LP: #256859).
-- Till Kamppeter <email address hidden> Mon, 11 Aug 2008 17:10:22 +0200
-
ghostscript (8.63.dfsg.1-0ubuntu2) intrepid; urgency=low
* debian/control, debian/rules: Split the fonts off into its own
"ghostscript-fonts" package. Changes dependencies of "ghostscript"
package that either "ghostscript-fonts" or "gsfonts" can be used.
-- Till Kamppeter <email address hidden> Mon, 11 Aug 2008 10:10:22 +0200
-
ghostscript (8.63.dfsg.1-0ubuntu1) intrepid; urgency=low
* New upstream release
* Merge from debian unstable, remaining changes:
- gs-esp and gs-common depend only on ghostscript, not on ghostscript-x,
as gs-esp had already split off gs-esp-x in Ubuntu
* debian/patches/12_gs-cjk_vertical_writing_metrics_fix.dpatch,
debian/patches/30_ps2pdf_man_improvement.dpatch: Adapted to upstream
changes.
* debian/control: Added libcairo2-dev to the build dependencies, as
Ghostscript has a libcairo-based output device now.
-- Till Kamppeter <email address hidden> Tue, 5 Aug 2008 11:10:22 +0200
-
ghostscript (8.62.dfsg.1-2.1ubuntu1) intrepid; urgency=low
* Merge from debian unstable, remaining changes:
- gs-esp and gs-common depend only on ghostscript, not on ghostscript-x,
as gs-esp had already split off gs-esp-x in Ubuntu
* debian/libgs8.shlibs: Removed. All libgs8 versions should have the same
API and ABI. The artificial restriction set by this file required all
reverse dependencies to be rebuilt for every stable release of Ghostscript.
* debian/ghostscript.doc-base: Removed. The file conflicts with the
corresponding file of ghostscript-doc and it also points to documentation
files which make only part of ghostscript-doc, so the files can be not
installed when this doc-base file is installed.
* debian/ghostscript-doc.doc-base: Corrected file mask for all HTML files.
The Ghostscript documentation is in *.htm files.
ghostscript (8.62.dfsg.1-2.1) unstable; urgency=high
* Non-maintainer upload.
* Add patches/31_fix-gc-sigbus.dpatch to avoid sigbus/segfaults on sparc and
hppa (and probably errors on other architectures as well).
Closes: #453903.
ghostscript (8.62.dfsg.1-2) unstable; urgency=low
* ghostscript: Tighten up versioned dependency on libgs8
- closes: #470253
* preinsts for each dummy packages now call update-alternatives
to make sure gs symlinks are removed before the new ghostscript
package is installed - closes: #449173
ghostscript (8.62.dfsg.1-1) unstable; urgency=low
* New upstream release.
* Removed Resource/Font for a minor licensing problem.
I'm now contacting the upstream, so they might be back soon.
* Fixed in the upstream - closes: #418706
See also http://bugs.ghostscript.com/show_bug.cgi?id=689600
* Now it can handle DEB_BUILD_OPTS as expected - closes: #446819
* 10_ijs_krgb_support.dpatch: incorporated into the upstream, removed.
* 27_cups_filters_with_buffered_input.dpatch: incorporated into
the upstream, removed.
* 28_print_encrypted_PDFs_from_adobe_reader_8.dpatch: incorporated into
the upstream, removed.
* 31_CVE-2008-0411.dpatch: incorporated into the upstream, removed.
thanks Nico Golde for NMU.
* shlibs: loosen the libgs8 shlibs version specification,
thanks Sune Vuorela for pointing it out - closes: #469218
* control: ghostscript doesn't provide gs, gs-esp, gs-gpl, gs-afpl
and gs-aladdin anymore - ghostscript-x does - closes: #448702, #462678
* control: tighten up versioned Conflicts on dummy packages.
* rules: removes /usr/share/doc/ghostscript/README.gz explicitly
- closes: #460692
* postinst: removes old /etc/alternative symlinks explicitly
- closes: #447495, #449061
ghostscript (8.61.dfsg.1-1.1) unstable; urgency=high
* Non-maintainer upload by security team.
* Fix stack based buffer overflow in the zseticcspace() function possibly
leading to arbitrary code exeuction via a crafted ps file.
(31_CVE-2008-0411.dpatch; Closes: #468190).
* Adjusting libgs shlibs file to match the new version number.
-- Till Kamppeter <email address hidden> Mon, 9 Jun 2008 18:41:22 +0200
-
ghostscript (8.61.dfsg.1-1ubuntu3) hardy; urgency=low
* SECURITY UPDATE: buffer overflow in color space handling code
* debian/patches/31_CVE-2008-0411.dpatch: fix zseticcspace() to perform
range checks
* References
CVE-2008-0411
-- Jamie Strandboge <email address hidden> Tue, 08 Apr 2008 11:58:11 -0400