source: trunk/server/fedora/specs/ghostscript.spec.patch @ 1684

Last change on this file since 1684 was 1587, checked in by geofft, 13 years ago
Patch Ghostscript overflow error, see GS bug #691295 (CVE-2010-1628)
File size: 1.4 KB
  • ghostscript.spec

     
    55Name: ghostscript
    66Version: %{gs_ver}
    77
    8 Release: 6%{?dist}
     8Release: 6.scripts%{scriptsversion}%{?dist}
    99
    1010# Included CMap data is Redistributable, no modification permitted,
    1111# see http://bugzilla.redhat.com/487510
     
    3535Patch17: ghostscript-tiff-default-strip-size.patch
    3636Patch18: ghostscript-tiff-fixes.patch
    3737
     38Patch100: ghostscript-CVE-2010-1628.patch
     39
    3840Requires: urw-fonts >= 1.1, ghostscript-fonts
    3941BuildRequires: xz
    4042BuildRequires: libjpeg-devel, libXt-devel
     
    151153# Backported some more TIFF fixes (bug #573970).
    152154%patch18 -p1 -b .tiff-fixes
    153155
     156# Avoid an exploitable overflow (scripts.mit.edu local patch).
     157%patch100 -p1 -b .CVE-2010-1628
     158
    154159# Convert manual pages to UTF-8
    155160from8859_1() {
    156161        iconv -f iso-8859-1 -t utf-8 < "$1" > "${1}_"
     
    332337%{_libdir}/libgs.so
    333338
    334339%changelog
     340* Fri Jul 16 2010 Geoffrey Thomas <geofft@mit.edu> 8.71-6.scripts
     341- Include the patch
     342  http://bugs.ghostscript.com/attachment.cgi?id=6350
     343  to fix CVE-2010-1628 (potential arbitrary code execution via
     344  an overflow), from the upstream bug report:
     345  http://bugs.ghostscript.com/show_bug.cgi?id=691295
     346
    335347* Tue Mar 16 2010 Tim Waugh <twaugh@redhat.com> 8.71-6
    336348- Backported some more TIFF fixes (bug #573970).
    337349- Use upstream fix for TIFF default strip size (bug #571520).
Note: See TracBrowser for help on using the repository browser.