-
ghostscript (9.53.3~dfsg-7ubuntu0.2) hirsute-security; urgency=medium
* SECURITY UPDATE: use-after-free in sampled_data_sample
- debian/patches/CVE-2021-45944.patch: check stack limits after
function evaluation in psi/zfsample.c.
- CVE-2021-45944
* SECURITY UPDATE: heap-based buffer overflow in sampled_data_finish
- debian/patches/CVE-2021-45949.patch: fix op stack management in
psi/zfsample.c.
- CVE-2021-45949
-- Marc Deslauriers <email address hidden> Tue, 11 Jan 2022 09:20:41 -0500
-
ghostscript (9.53.3~dfsg-7ubuntu0.1) hirsute-security; urgency=medium
* SECURITY UPDATE: Trivial -dSAFER bypass
- debian/patches/CVE-2021-3781.patch: include device specifier strings
in access validation in base/gdevpipe.c, base/gp_mshdl.c,
base/gp_msprn.c, base/gp_os2pr.c, base/gslibctx.c.
- CVE-2021-3781
-- Marc Deslauriers <email address hidden> Thu, 09 Sep 2021 09:00:55 -0400
-
ghostscript (9.53.3~dfsg-7) unstable; urgency=medium
* update previous changelog section, add a bug closure.
* update source helper script copyright-check.
* copyright: update coverage
* add patches cherry-picked upstream:
+ re-enable support for opvp/oprp devices;
closes: bug#980971, thanks to Chris Bainbridge
+ parse some types of broken PDFs;
closes: bug#981583, thanks to Rogério Brito
+ fix segfault parsing large Postscript file;
closes: bug#970878, thanks to Paul Gevers, Bernhard Übelacker,
Iustin Pop and Stefano Rivera
* update symbols: 4 private symbols added
-- Jonas Smedegaard <email address hidden> Tue, 02 Feb 2021 14:18:01 +0100
-
ghostscript (9.53.3~dfsg-6) unstable; urgency=medium
* copyright-check:
+ fix quote path when creating temporary skipfile
+ ignore skipfiles below debian/
+ compute robust file regex from content with regexp-assemble
+ list dependencies in header comment
* add source helper tools
patch-cherry-pick patch-mkseries patch-refresh-all
* copyright:
+ update coverage
+ consistently wrap Files and Copyright paragraphs
(sole exception being initial wildcard Files paragraph)
* add patch cherry-picked upstream,
and patch by Stefano Rivera,
to fix endian issues with CMM;
closes: bug#976177, thanks to Stefano Rivera
* declare compliance with Debian Policy 4.5.1
* update git-buildpackage settings:
+ use DEP-14 git branch names
+ add usage comment
* add patch cherry-picked upstream
to fix linking with libfreetype 2.10.3 and newer
-- Jonas Smedegaard <email address hidden> Wed, 23 Dec 2020 02:51:22 +0100
-
ghostscript (9.53.3~dfsg-5ubuntu2) hirsute; urgency=medium
* Patch 0003: Revert 278f9a53 "txtwrite - better processing of text in type
3 fonts". Fixing segfault in doc-rfc autopkgtest. (Closes: #970878)
-- Stefano Rivera <email address hidden> Mon, 30 Nov 2020 18:55:30 -0800
-
ghostscript (9.53.3~dfsg-5ubuntu1) hirsute; urgency=medium
* Patch 0001, 0002: Fix big-endian CMM-handling bug leading to segfault in
the ocrmypdf autopkgtest. (Closes: #976177)
-- Stefano Rivera <email address hidden> Mon, 30 Nov 2020 16:39:58 -0800
-
ghostscript (9.53.3~dfsg-5) unstable; urgency=medium
* simplify build routines slightly
* tighten source script copyright-check
* update copyright hints
* relax tracking of symlinks to fonts-urw-base35
to ignore file contents;
closes: bug#972896, thanks to Fabian Greffrath
-- Jonas Smedegaard <email address hidden> Mon, 26 Oct 2020 11:04:53 +0100
-
ghostscript (9.52~dfsg-1ubuntu2) groovy; urgency=medium
* SECURITY UPDATE: memory corruption issue via non-standard PS operator
- debian/patches/CVE-2020-15900.patch: fix calculation in
psi/zstring.c.
- CVE-2020-15900
-- Marc Deslauriers <email address hidden> Fri, 31 Jul 2020 14:12:38 -0400