Package "a2ps"
Name: |
a2ps
|
Description: |
GNU a2ps - 'Anything to PostScript' converter and pretty-printer
|
Latest version: |
1:4.14-1.3 |
Release: |
trusty (14.04) |
Level: |
base |
Repository: |
universe |
Links
Download "a2ps"
Other versions of "a2ps" in Trusty
No other version of this package is available
in the Trusty release.
Changelog
a2ps (1:4.14-1.3) unstable; urgency=high
* Non-maintainer upload.
* Add CVE-2014-0466.diff patch.
CVE-2014-0466: fixps does not invoke gs with -dSAFER. A malicious
PostScript file could delete files with the privileges of the invoking
user.
Thanks to brian m. carlson <email address hidden> (Closes: #742902)
-- Salvatore Bonaccorso <email address hidden> Sun, 30 Mar 2014 09:09:07 +0200
|
Source diff to previous version |
742902 |
a2ps: CVE-2014-0466: does not invoke gs with -dSAFER - Debian Bug report logs |
CVE-2014-0466 |
does not invoke gs with -dSAFER |
|
a2ps (1:4.14-1.2) unstable; urgency=medium
* Non-maintainer upload.
* Build-depend on emacs24 instead of emacs23. Closes: #682717.
* Use dpkg-buildflags.
* Build using autotools-dev.
* CVE-2001-1593. Fix insecure use of /tmp. Closes: #737385.
* Fix typo in package description. Closes: #608647.
* Avoid a bad free in the encoding handling logic (taken from Fedora).
* Fix build errors with -Wformat=security.
* Fix texi build error.
* Stop using dpatch, convert to packaging format 3.0. Closes: #669642.
* Bump standards version to 3.9.5.
-- Matthias Klose <email address hidden> Thu, 27 Mar 2014 14:25:04 +0100
|
682717 |
a2ps: Should build-depend on emacs23 | emacs24 - Debian Bug report logs |
737385 |
a2ps: CVE-2001-1593: insecure use of /tmp - Debian Bug report logs |
608647 |
Typo in package description: "down loading" - Debian Bug report logs |
669642 |
[PATCH] a2ps: Helping to update to packaging format 3.0 - Debian Bug report logs |
CVE-2001-1593 |
insecure use of /tmp |
|
About
-
Send Feedback to @ubuntu_updates