-
Committer:
Package Import Robot
-
Author(s):
Salvatore Bonaccorso
-
Date:
2014-03-30 18:14:06 UTC
-
Revision ID:
package-import@ubuntu.com-20140330181406-6ll2xeujfw4nlx3u
Tags: 1:4.14-1.1+deb6u1
* Non-maintainer upload by the Security Team.
* Add 09_CVE-2001-1593.dpatch patch.
CVE-2011-1593: Fix insecure use of /tmp
Thanks to Jakub Wilk <jwilk@debian.org> (Closes: #737385)
* Add 10_CVE-2014-0466.dpatch patch.
CVE-2014-0466: fixps does not invoke gs with -dSAFER. A malicious
PostScript file could delete files with the privileges of the invoking
user.
Thanks to brian m. carlson <sandals@crustytoothpaste.net> (Closes: #742902)