~ubuntu-branches/debian/squeeze/a2ps/squeeze

Viewing all changes in revision 9.

  • Committer: Package Import Robot
  • Author(s): Salvatore Bonaccorso
  • Date: 2014-03-30 18:14:06 UTC
  • Revision ID: package-import@ubuntu.com-20140330181406-6ll2xeujfw4nlx3u
Tags: 1:4.14-1.1+deb6u1
* Non-maintainer upload by the Security Team.
* Add 09_CVE-2001-1593.dpatch patch.
  CVE-2011-1593: Fix insecure use of /tmp
  Thanks to Jakub Wilk <jwilk@debian.org> (Closes: #737385)
* Add 10_CVE-2014-0466.dpatch patch.
  CVE-2014-0466: fixps does not invoke gs with -dSAFER. A malicious
  PostScript file could delete files with the privileges of the invoking
  user.
  Thanks to brian m. carlson <sandals@crustytoothpaste.net> (Closes: #742902)

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: