-
ghostscript (10.01.2~dfsg1-0ubuntu2.1) mantic-security; urgency=medium
* SECURITY UPDATE: code execution via PS documents and IJS device
- debian/patches/CVE-2023-43115.patch: prevent PostScript programs
switching to the IJS device after SAFER has been activated in
devices/gdevijs.c.
- CVE-2023-43115
-- Marc Deslauriers <email address hidden> Thu, 12 Oct 2023 08:59:19 -0400
-
ghostscript (10.01.2~dfsg1-0ubuntu2) mantic; urgency=medium
* SECURITY UPDATE: buffer overflow
- debian/patches/CVE-2023-38559.patch: bounds check the buffer prior to
deferencing the pointer in devn_pcx_write_rle() in base/gdevdevn.c.
- CVE-2023-38559
-- Allen Huang <email address hidden> Thu, 21 Sep 2023 17:06:57 +0200
-
ghostscript (10.01.2~dfsg1-0ubuntu1) mantic; urgency=low
* Merge from Debian unstable. Remaining changes:
- New re-packaging of Ghostscript 10.00.0, keeping the leptonica and
tesseract convenience copies in as they are not in Ubuntu Main. Added
appropriate remark to debian/copyright.
- Also keep the lcms2mt convenience copy as it is heavily patched by
Ghostscript's upstream developers, especially for multi-threading
(mt) support.
ghostscript (10.01.2~dfsg-1) unstable; urgency=medium
* QA upload
[ upstream ]
* new release(s)
[ Jonas Smedegaard ]
* fix source helper tool copyright-check to avoid insecure shell expansion
* fix source helper tool copyright-check to work with Path::Tiny 0.144
* declare compliance with Debian Policy 4.6.2
* update copyright info: extend repackaging to exclude images containing non-DFSG ICC profile
* drop patches obsoleted by upstream changes
* unfuzz patches
-- Till Kamppeter <email address hidden> Wed, 16 Aug 2023 21:08:15 +0200
-
ghostscript (10.0.0~dfsg1-0ubuntu2) mantic; urgency=medium
* SECURITY UPDATE: incorrect permission validation for pipe devices
- debian/patches/CVE-2023-36664-1.patch: don't reduce pipe file names
for permission validation in base/gpmisc.c, base/gslibctx.c.
- debian/patches/CVE-2023-36664-2.patch: fix logic and add extra test
in base/gpmisc.c, base/gslibctx.c.
- CVE-2023-36664
-- Marc Deslauriers <email address hidden> Wed, 05 Jul 2023 12:45:07 -0400
-
ghostscript (10.0.0~dfsg1-0ubuntu1.1) lunar-security; urgency=medium
* SECURITY UPDATE: Buffer Overflow
- debian/patches/CVE-2023-28879.patch: add check to make sure that the
buffer has space for two characters in s_xBCPE_process() in base/sbcp.c.
- debian/patches/CVE-2023-28879-post.patch: add PostScript filters
removals in Resource/Init/gs_init.ps.
- CVE-2023-28879
-- Rodrigo Figueiredo Zaiden <email address hidden> Tue, 25 Apr 2023 16:29:39 -0300
-
ghostscript (10.0.0~dfsg1-0ubuntu1) lunar; urgency=low
* Merge from Debian unstable. Remaining changes:
- New re-packaging of Ghostscript 10.00.0, keeping the leptonica and
tesseract convenience copies in as they are not in Ubuntu Main. Added
appropriate remark to debian/copyright.
- Just mark all libtesseract symbols optional and be done with it.
They are also arch-specific so causing build failures on non-x86.
- Also keep the lcms2mt convenience copy as it is heavily patched by
Ghostscript's upstream developers, especially for multi-threading
(mt) support.
- Upstream patch (commit 387f094) for the CUPS/PWG/Apple Raster
output device not to match custom page sizes against the sizes defined
in the PPD file, to avoid unwished rotations or size adjustments.
(cups-filters upstream issue #484).
ghostscript (10.0.0~dfsg-9) unstable; urgency=medium
* QA upload.
* Build docs with sphinx. Closes: #1024896, #1024964
ghostscript (10.0.0~dfsg-8) unstable; urgency=medium
* QA upload
* debian/: No longer build with dynamic modules (Closes: #1023330)
- X11 support is now part of ghostscript and ghostcript-x is a
transitional package.
ghostscript (10.0.0~dfsg-7) unstable; urgency=medium
* QA upload.
[ Debian Janitor ]
* Apply multi-arch hints. + ghostscript-x: Add Multi-Arch: same.
ghostscript (10.0.0~dfsg-6) unstable; urgency=medium
* QA upload
* Upload to unstable
ghostscript (10.0.0~dfsg-5) experimental; urgency=medium
* QA upload
* debian/: Partially revert the changes from 10.0.0~dfsg-2
- Move version-specific files back to libgs10-common
- Keep non-version-specific ICC profiles in libgs-common
- Add libgs9-common transitional package for packages requiring the ICC
profiles
* debian/rules: Use no longer necessary dh_strip override
* debian/control: Remove unnecessary ${shlibs:Depends}
ghostscript (10.0.0~dfsg-4) unstable; urgency=medium
* orphan package: set maintainer to Debian QA Group
ghostscript (10.0.0~dfsg-3) unstable; urgency=medium
* build-depend on dh-sequence-pkgkde-symbolshelper
(not pkg-kde-tools)
ghostscript (10.0.0~dfsg-2) experimental; urgency=medium
* provide binary package libgs-common (not libgs10-common),
and have it break and replace libgs9-common;
closes: bug#1020846, thanks to Andreas Beckmann
ghostscript (10.0.0~dfsg-1) experimental; urgency=medium
* update copyright-check:
+ declare metadata extensions separately from use
+ update coverage
* drop patch 1001 to support cross build, adopted upstream
* unfuzz patches
* declare compliance with Debian Policy 4.6.1
* unfuzz patches
* bump library packages for new SONAME
-- Till Kamppeter <email address hidden> Thu, 15 Feb 2023 18:39:15 +0100
