gs-esp (8.15.2.dfsg.0ubuntu1-0ubuntu1.2) dapper-security; urgency=low * SECURITY UPDATE: Arbitrary code execution due to integer overflows and insufficient upper-bounds checks in the ICC library - debian/patches/06_CVE-2009-0583_0584.dpatch: fix multiple integer overflows and perform bounds checking in icclib/icc.c. - CVE-2009-0583 - CVE-2009-0584 * SECURITY UPDATE: denial of service and possible arbitrary code execution via buffer underflow in the CCITTFax decoding filter - debian/patches/07_CVE-2007-6725.dpatch: work around the buffer underflow in src/scfd.c. - CVE-2007-6725 * SECURITY UPDATE: denial of service and possible arbitrary code execution via BaseFont writer module - debian/patches/08_CVE-2008-6679.dpatch: increase size of buffer in src/gdevpdtb.c. - CVE-2008-6679 * SECURITY UPDATE: possible arbitrary code execution via JBIG2 symbol dictionary segments - debian/patches/09_CVE-2009-0196.dpatch: validate size of runlength in export symbol table in jbig2dec/jbig2_symbol_dict.c. - CVE-2009-0196 * SECURITY UPDATE: denial of service and possible arbitrary code execution via integer overflows in icclib - debian/patches/10_CVE-2009-0792.dpatch: fix numerous overflows in icclib/icc.c. - CVE-2009-0792 -- Marc Deslauriers Thu, 09 Apr 2009 13:50:18 -0400 gs-esp (8.15.2.dfsg.0ubuntu1-0ubuntu1.1) dapper-security; urgency=low * SECURITY UPDATE: buffer overflow in color space handling code * debian/patches/05_CVE-2008-0411.dpatch: fix zseticcspace() to perform range checks * References CVE-2008-0411 -- Jamie Strandboge Tue, 08 Apr 2008 12:44:43 -0400 gs-esp (8.15.2.dfsg.0ubuntu1-0ubuntu1) dapper; urgency=low * New upstream version. Changes are listed here: http://www.cups.org/articles.php?L378 and consist of bugfixes (including some security fixes) and improvements to CUPS support and some new drivers. -- Ian Jackson Tue, 2 May 2006 17:54:21 +0100 gs-esp (8.15.1.dfsg.1-1ubuntu4) dapper; urgency=low * Fix cdj driver not to fail on unsupported NumCopies setpagedevice. Malone #38060; upstream STR 1577, trunk r137. Diff imported from http://www.easysw.com/espnews.php?s1+gcups.commit+v1. -- Ian Jackson Mon, 24 Apr 2006 14:31:56 +0100 gs-esp (8.15.1.dfsg.1-1ubuntu3) dapper; urgency=low * Update KRGB support as described in gs-esp-krgb1.2.patch from Debian #354394. Fixes Malone #23099. See also Debian #355616 and http://www.cups.org/espgs/str.php?L1448. -- Ian Jackson Tue, 4 Apr 2006 17:55:03 +0100 gs-esp (8.15.1.dfsg.1-1ubuntu2) dapper; urgency=low * Resynch with Debian. Applying same patch as to our gs-gpl; dropping old patches against gs-esp 7.07 (phnew!). Remaining Ubuntu patches: * Close and reopen x11 driver when size changes. Fixes coredump in x11 driver under gv with antialiasing turned (reproducible in 8.01 on a 16bbp display). Related to Ubuntu 17141, and to fix for Debian #254206. * Fix coredumping bug on ppc: Ubuntu bugzilla: http://bugzilla.ubuntu.com/show_bug.cgi?id=14311 http://bugzilla.ubuntu.com/show_bug.cgi?id=13771 This is the same issue as http://bugs.ghostscript.com/show_bug.cgi?id=687643 http://bugs.ghostscript.com/show_bug.cgi?id=687730 discussed in http://ghostscript.com/pipermail/gs-code-review/2004-September/004649.html and probably the same as Debian bugs #324796 and #325570 and perhaps others in Debian's gs-esp and gs-gpl. This bug is due to gs's incorrect assumption that (where ref is an important struct inside gs) sizeof(ref) % alignof(jmp_buf) == 0. This is not true on ppc and apparently not necessarily on Itanium either. The `fix' I have applied is to wrap setjmp/longjmp up in macros which arrange for jmp_buf to have alignment 1, as sketched out in the URLs above. A previous attempt to fix it by padding ref out to the alignment of jmp_buf failed and I don't know why; but I suspect other unjustified assumptions in gs. GhostScript's algorithms ought to be repaired not to assume falsehoods. -- Ian Jackson Tue, 13 Sep 2005 18:27:17 +0100 gs-esp (8.15.1.dfsg.1-1) unstable; urgency=low * New upstream release - closes: #330807 * Acknowledged NMUs - closes: #320851, #323688 -- Masayuki Hatta (mhatta) Mon, 7 Nov 2005 14:21:18 +0900 gs-esp (8+8.15rc4.dfsg.1-2.1) unstable; urgency=medium * Non-maintainer upload. * Medium-urgency upload for RC bugfix. * Use -fPIC for building all objects which will be linked into the X11.so DSO. Closes: #320851. -- Steve Langasek Wed, 28 Sep 2005 00:58:49 -0700 gs-esp (8+8.15rc4.dfsg.1-2) unstable; urgency=low * Disabled FAPI. It caused too much headaches - closes: #323430, #322553, #322159, #321436, #321205, #321049 -- Masayuki Hatta (mhatta) Wed, 17 Aug 2005 22:09:35 +0900 gs-esp (8+8.15rc4.dfsg.1-1) unstable; urgency=low * New upstream release. * Added Build-Dep: pkg-config - closes: #320826 * autom4te output has been removed from the upstream tarball - closes: #320832 * Fixed IA64 build problem in fapi_ft.c - closes: #320856 -- Masayuki Hatta (mhatta) Mon, 15 Aug 2005 23:27:41 +0900 gs-esp (8+8.15rc3.dfsg.1-1) unstable; urgency=low * Long overdue, new upstream release. * Updated Standards-Version (no physical changes). * Removed non-free parts (Resource/CMaps) from the upstream tarball. * patches/04_enable_fapi.dpatch: Enabled FAPI, Font API plug-in that allows fonts to be rendered by FreeType. Kinda shaky now. * gs-esp.links: make a symlink of CMap directory under /usr/share/gs-esp/8.15/Resource. NOTE: even if CMap files can be found somewhere in the font path, gs-esp fails to prepare a composed font with CIDFont and CMap. This hack is a workaround for "the CMap files must be put into the first directory of the font path" problem. Many Thanks Akira TAGOH for suggestion. -- Masayuki Hatta (mhatta) Mon, 1 Aug 2005 16:20:03 +0900 gs-esp (7.07.1-9mtu1) unstable-mtu; urgency=low * Apply opvp/oprp patch. -- Kenshi Muto Fri, 25 Feb 2005 15:02:57 +0900 gs-esp (7.07.1-9) unstable; urgency=low * Rebuilt against new libcupsimage2-dev. (tiff transition) -- Kenshi Muto Sun, 1 Aug 2004 15:06:26 +0900 gs-esp (7.07.1-8) unstable; urgency=low * Tighten build-dep up on libcupsys2-dev - closes: #251685, #251578, #251599 * [06_ijs_krgb_support.dpatch] Added KRGB colorspace support to gs IJS driver - closes: #249167 -- Masayuki Hatta (mhatta) Sun, 30 May 2004 20:50:00 +0900 gs-esp (7.07.1-7) unstable; urgency=medium * Rebuilt with libcupsys2-gnutls10 for 'unstable'. -- Kenshi Muto Mon, 24 May 2004 23:35:38 +0000 gs-esp (7.07.1-6experimental1) experimental; urgency=low * Rebuilt with libcupsys2-gnutls10. -- Kenshi Muto Sat, 15 May 2004 13:21:14 +0000 gs-esp (7.07.1-6) unstable; urgency=low * Now provides gs-pdfencrypt - closes: #229560 -- Masayuki Hatta (mhatta) Wed, 5 May 2004 17:41:31 +0900 gs-esp (7.07.1-5) unstable; urgency=low * Built with GLIB 2.0, thanks Ondrej Sury - closes: #238149 * Do not run "update-alternatives --remove" when upgrade. * Set the priority to 60. -- Masayuki Hatta (mhatta) Wed, 24 Mar 2004 16:23:48 +0900 gs-esp (7.07.1-4) unstable; urgency=low * Hmm, seems CUPS doesn't work well with fontconfig patch. Removed it for now - closes: #233592 -- Masayuki Hatta (mhatta) Thu, 19 Feb 2004 18:00:21 +0900 gs-esp (7.07.1-3) unstable; urgency=low * [control] oops, I forgot to change Maintainer field. -- Masayuki Hatta (mhatta) Tue, 17 Feb 2004 22:59:42 +0900 gs-esp (7.07.1-2) unstable; urgency=low * [04_fontconfig.support.dpatch] added fontconfig support by Akira TAGOH. * Moved /usr/share/gs-esp/7.07/{doc|examples}/ under /usr/share/doc/gs-esp - closes: #229302, #219910 -- Masayuki Hatta (mhatta) Tue, 17 Feb 2004 20:30:35 +0900 gs-esp (7.07.1-1) unstable; urgency=low * New maintainer: co-maintainer is kmuto@debian.org. * New upstream release - closes: #215417 * Acknowledged NMUs - closes: #201146 * Stop providing cupsys-pstoraster - closes: #208580 * Revised description - closes: #197241 * [README.Debian] added notes on Omni - closes: #179412 * Now uses dpatch. * [02_fixes_for_cjk_ttf.dpatch] fix gs_ttf.ps for using CJK TTFs (See Bug#205055) -- Masayuki Hatta Mon, 27 Oct 2003 20:17:28 +0900 gs-esp (7.05.6-2.1) unstable; urgency=low * Non-maintainer upload * debian/control: Changed Build-Depends: from libgimpprint-dev to libgimpprint1-dev (Closes: #201146) -- Roland Stigge Wed, 3 Sep 2003 21:35:05 +0200 gs-esp (7.05.6-2) unstable; urgency=low * Rebuilt against new libcupsimage2 packages from cupsys. -- Jeff Licquia Tue, 8 Apr 2003 03:51:58 -0500 gs-esp (7.05.6-1) unstable; urgency=low * New upstream version. -- Jeff Licquia Sun, 2 Mar 2003 13:59:59 -0500 gs-esp (7.05.5-2) unstable; urgency=low * Re-enabled the libpaper patch. The segfault generated when running as pstoraster seems to be a bug tickled by the cups driver, so the libpaper patch now sets DEFPAPERSIZE; this value is given to PAPERSIZE only if DEVICE != "cups". Closes: #178189. * Added support for DEB_BUILD_OPTIONS. -- Jeff Licquia Sun, 23 Feb 2003 17:37:50 -0500 gs-esp (7.05.5-1) unstable; urgency=low * New upstream version. * Enabled the omni driver. * Moved to libpng3-dev. Closes: #169679. * Added gs-cjk patch from OHURA Makoto . Closes: #156014. -- Jeff Licquia Mon, 18 Nov 2002 22:23:56 -0500 gs-esp (7.05.4-1) unstable; urgency=low * New upstream version. Closes: #152201. * Force -f on a rm to prevent user interaction in some cases. Closes: #152200. -- Jeff Licquia Wed, 7 Aug 2002 10:58:59 -0500 gs-esp (7.05.3-2) unstable; urgency=low * Missed some Build-Depends. Closes: #154790. -- Jeff Licquia Mon, 29 Jul 2002 18:27:53 -0500 gs-esp (7.05.3-1) unstable; urgency=low * New upstream version. * Updated Maintainer field, which I forgot to do for the last upload. * Use ln -sf instead of ln -s to create Makefile.in link in debian/rules. Closes: #152197. * Applied gs libpaper patch, and added build-dep on libpaper-dev. The patch is currently disabled, however, as it causes a segfault. * Updated default font path to be more correct. -- Jeff Licquia Mon, 29 Jul 2002 00:39:54 -0500 gs-esp (7.05.2-1) unstable; urgency=low * Real initial release. Thanks to Eric Sharkey for the initial work. Closes: #89036. -- Jeff Licquia Wed, 19 Jun 2002 21:13:08 -0500 gs-esp (5.50-1) unstable; urgency=low * Initial Release. * Closes: #89036 -- Eric Sharkey Fri, 9 Mar 2001 21:47:11 -0500