Changelog
cups (1.3.8-1lenny2) unstable; urgency=high
* Urgency high due to security fixes.
* debian/control: Package development moved to bzr, update Vcs- tags.
* Add CVE-2008-3641_hpgl_filter_overflow.dpatch: Fix buffer overflow
triggered by invalid number of pens in the HPGL filter. (CVE-2008-3641,
STR #2911)
* Add CVE-2008-3639_sgi_filter_overflow.dpatch: Fix buffer overflow due to
unchecked boundary in the SGI filter. (CVE-2008-3639, STR #2918)
* Add CVE-2008-3640_texttops_overflow.dpatch: Fix buffer overflow by
specifying invalidly large or negative page metrics. (CVE-2008-3640,
STR #2919)
* Add hpgl-regression.dpatch: Revert the SP_select_pen() enumeration change
introduced in STR #2911, because it changes the color mapping (e. g. "SP1"
would now select a white pen instead of a black one, and "SP0" would not
be valid at all any more). Also fix a remaining off-by-one loop. (STR
#2966)
* Add admin-fr-translation.dpatch: Update the French admin.tmpl, to have the
missing "Find new printer" button and the "Subscriptions" section. Thanks
to Yves-Alexis Perez! (Closes: #475270)
-- Martin Pitt <email address hidden> Sat, 11 Oct 2008 12:53:30 +0200