Pullup ticket #4372 - requested by taca print/a2ps: security patch Revisions pulled up: - print/a2ps/Makefile 1.77 - print/a2ps/distinfo 1.15 - print/a2ps/patches/patch-CVE-2014-0466_1 1.1 - print/a2ps/patches/patch-CVE-2014-0466_2 1.1 --- Module Name: pkgsrc Committed By: tez Date: Tue Apr 8 19:32:11 UTC 2014 Modified Files: pkgsrc/print/a2ps: Makefile distinfo Added Files: pkgsrc/print/a2ps/patches: patch-CVE-2014-0466_1 patch-CVE-2014-0466_2 Log Message: Add fix for CVE-2014-0466 from https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742902diff -r1.76 -r1.76.2.1 pkgsrc/print/a2ps/Makefile
(tron)
@@ -1,17 +1,17 @@ | @@ -1,17 +1,17 @@ | |||
1 | # $NetBSD: Makefile,v 1.76 2014/02/05 17:20:31 drochner Exp $ | 1 | # $NetBSD: Makefile,v 1.76.2.1 2014/04/14 14:47:45 tron Exp $ | |
2 | 2 | |||
3 | DISTNAME= a2ps-4.14 | 3 | DISTNAME= a2ps-4.14 | |
4 | PKGREVISION= 5 | 4 | PKGREVISION= 6 | |
5 | CATEGORIES= print | 5 | CATEGORIES= print | |
6 | MASTER_SITES= ${MASTER_SITE_GNU:=a2ps/} \ | 6 | MASTER_SITES= ${MASTER_SITE_GNU:=a2ps/} \ | |
7 | ftp://ftp.enst.fr/pub/unix/a2ps/ | 7 | ftp://ftp.enst.fr/pub/unix/a2ps/ | |
8 | 8 | |||
9 | MAINTAINER= pkgsrc-users@NetBSD.org | 9 | MAINTAINER= pkgsrc-users@NetBSD.org | |
10 | HOMEPAGE= http://www-inf.enst.fr/~demaille/a2ps/ | 10 | HOMEPAGE= http://www-inf.enst.fr/~demaille/a2ps/ | |
11 | COMMENT= Formats an ascii file for printing on a postscript printer | 11 | COMMENT= Formats an ascii file for printing on a postscript printer | |
12 | 12 | |||
13 | DEPENDS+= psutils>=1.17:../../print/psutils | 13 | DEPENDS+= psutils>=1.17:../../print/psutils | |
14 | 14 | |||
15 | STRIP= # empty | 15 | STRIP= # empty | |
16 | 16 | |||
17 | USE_LIBTOOL= yes | 17 | USE_LIBTOOL= yes |
@@ -1,11 +1,13 @@ | @@ -1,11 +1,13 @@ | |||
1 | $NetBSD: distinfo,v 1.14 2014/02/05 17:20:31 drochner Exp $ | 1 | $NetBSD: distinfo,v 1.14.2.1 2014/04/14 14:47:45 tron Exp $ | |
2 | 2 | |||
3 | SHA1 (a2ps-4.14.tar.gz) = 365abbbe4b7128bf70dad16d06e23c5701874852 | 3 | SHA1 (a2ps-4.14.tar.gz) = 365abbbe4b7128bf70dad16d06e23c5701874852 | |
4 | RMD160 (a2ps-4.14.tar.gz) = a5105d6256a809483e099519325979aaaff7219e | 4 | RMD160 (a2ps-4.14.tar.gz) = a5105d6256a809483e099519325979aaaff7219e | |
5 | Size (a2ps-4.14.tar.gz) = 2552507 bytes | 5 | Size (a2ps-4.14.tar.gz) = 2552507 bytes | |
6 | SHA1 (patch-CVE-2001-1593_1) = d0ce811248c33c5df6952f84176c2901ca4bd176 | 6 | SHA1 (patch-CVE-2001-1593_1) = d0ce811248c33c5df6952f84176c2901ca4bd176 | |
7 | SHA1 (patch-CVE-2001-1593_2) = f3a40104b0c510480ce5107a8acf2924d4ef5974 | 7 | SHA1 (patch-CVE-2001-1593_2) = f3a40104b0c510480ce5107a8acf2924d4ef5974 | |
8 | SHA1 (patch-CVE-2014-0466_1) = fa77ad336e307678e0c649e049b57d1fbc8c492f | |||
9 | SHA1 (patch-CVE-2014-0466_2) = 1abc6d26bdf03d859cec53afc3f5c363942d9385 | |||
8 | SHA1 (patch-aa) = 6317b6abca697388538fc705037da55379a4e1e1 | 10 | SHA1 (patch-aa) = 6317b6abca697388538fc705037da55379a4e1e1 | |
9 | SHA1 (patch-ab) = 7b1f1e3ed2af47e7d9864ec2dbcd7d105f93632a | 11 | SHA1 (patch-ab) = 7b1f1e3ed2af47e7d9864ec2dbcd7d105f93632a | |
10 | SHA1 (patch-ac) = 8e09c4c3b320b58bf12c4266d4d22977b5f9b826 | 12 | SHA1 (patch-ac) = 8e09c4c3b320b58bf12c4266d4d22977b5f9b826 | |
11 | SHA1 (patch-lib_path-concat.c) = b345a7b16559315223dcbb182e92feccca7e6e2f | 13 | SHA1 (patch-lib_path-concat.c) = b345a7b16559315223dcbb182e92feccca7e6e2f |
$NetBSD: patch-CVE-2014-0466_1,v 1.1.2.2 2014/04/14 14:47:45 tron Exp $
Fix for CVE-2014-0466 from
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742902
--- contrib/fixps.in
+++ contrib/fixps.in
@@ -389,7 +389,7 @@
eval "$command" ;;
gs)
$verbose "$program: making a full rewrite of the file ($gs)." >&2
- $gs -q -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
+ $gs -q -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
esac
)
fi
$NetBSD: patch-CVE-2014-0466_2,v 1.1.2.2 2014/04/14 14:47:45 tron Exp $
Fix for CVE-2014-0466 from
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742902
--- contrib/fixps.m4
+++ contrib/fixps.m4
@@ -307,7 +307,7 @@
eval "$command" ;;
gs)
$verbose "$program: making a full rewrite of the file ($gs)." >&2
- $gs -q -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
+ $gs -q -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
esac
)
fi