SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for ghostscript-mini-devel-9.15-14.3.1.x86_64.rpm :
Mon Jan 22 13:00:00 2018 daniel.molkentinAATTsuse.com
- Update CVE-2016-10317.patch to final upstream patch,
required another commit which has been sqashed in
- CVE-2017-9835.patch fixes heap-based buffer overflow in gs_alloc_ref_array
see https://bugs.ghostscript.com/show_bug.cgi?id=697985
(bsc#1050879)

Fri Jan 19 13:00:00 2018 daniel.molkentinAATTsuse.com
- CVE-2016-10317.patch fixes DoS in fill_threshhold_buffer
see https://bugs.ghostscript.com/show_bug.cgi?id=697459
(bsc#1032230)
- CVE-2017-9612.patch fixes DoS in Ins_IP function
see https://bugs.ghostscript.com/show_bug.cgi?id=698026
(bsc#1050891)
- CVE-2017-9726.patch fixes heap-based buffer over-read in Ins_MDRP
see http://bugs.ghostscript.com/show_bug.cgi?id=698055
(bsc#1050889)
- CVE-2017-9727.patch fixes DoS in gx_ttfReader__Read function
see http://bugs.ghostscript.com/show_bug.cgi?id=698056
(bsc#1050888)
- CVE-2017-9739.patch fixes DoS in Ins_JMPR function
see https://bugs.ghostscript.com/show_bug.cgi?id=698063
(bsc#1050887)
- CVE-2017-11714.patch fixes out of bounds read in igc_reloc_struct_ptr()
(bsc#1051184)
- CVE-2016-10219.patch fixes DoS in intersect() function
see https://bugs.ghostscript.com/show_bug.cgi?id=697453
(bsc#1032138)

Fri Jun 2 14:00:00 2017 daniel.molkentinAATTsuse.com
- CVE-2017-9216.patch fixes a NULL pointer dereference in jbig2_huffman_get
see https://bugs.ghostscript.com/show_bug.cgi?id=697934
(bsc#1040643)

Fri Apr 28 14:00:00 2017 vcizekAATTsuse.com
- CVE-2016-9601.patch fixes an integer overflow in jbig2_image_new
see https://bugs.ghostscript.com/show_bug.cgi?id=697457
(bsc#1018128)
- CVE-2016-10220.patch fixes a NULL pointer dereference in gx_device_finalize
see https://bugs.ghostscript.com/show_bug.cgi?id=697450
(bsc#1032120)
- CVE-2017-5951.patch fixes a NULL pointer dereference in ref_stack_index
see https://bugs.ghostscript.com/show_bug.cgi?id=697548
(bsc#1032114)
- CVE-2017-7207.patch fixes a NULL pointer dereference in mem_get_bits_rectangle
see https://bugs.ghostscript.com/show_bug.cgi?id=697676
(bsc#1030263)

Fri Apr 28 14:00:00 2017 vcizekAATTsuse.com
- CVE-2017-8291.patch fixes a type confusion in .rsdparams and .eqproc
see https://bugs.ghostscript.com/show_bug.cgi?id=697808
(bsc#1036453)

Mon Oct 31 13:00:00 2016 alarrosaAATTsuse.com
- Add 0001-Fix-locksafe.patch to fix a regression introduced
in CVE-2013-5653.patch by which ps files couldn\'t be opened
in okular/evince (boo#1006592, kde#371887).

Thu Oct 20 14:00:00 2016 jsmeixAATTsuse.de
- CVE-2016-8602.patch fixes a NULL dereference in .sethalftone5
see http://bugs.ghostscript.com/show_bug.cgi?id=697203
(bsc#1004237).

Mon Oct 10 14:00:00 2016 sfleesAATTsuse.de
- Fix multiple -dsafer realated CVE\'s (bsc#1001951)

* CVE-2013-5653.patch

* CVE-2016-7978.patch

* CVE-2016-7979.patch

Fri Jan 29 13:00:00 2016 fcrozatAATTsuse.com
- Add fix-mutex-crash.patch: fix crash in mutex (bsc#963017)
(ghostscript bug #695862)

Mon Jul 27 14:00:00 2015 jsmeixAATTsuse.de
- CVE-2015-3228.patch fixes out of bound read/write cause
by integer overflow in gsmalloc.c (boo#939342).

Sun Sep 28 14:00:00 2014 roAATTsuse.de
- readd ppc64le patch ppc64le-support.patch
lcms has not been fixed upstream and lcms2 has been fixed
in a broken way

Tue Sep 23 14:00:00 2014 jsmeixAATTsuse.de
- Version upgrade to 9.15. Primarily a maintenance release.
There are no recorded incompatible changes (as of this writing).
Highlights in this release include:

* Ghostscript now supports the PDF security handler revision 6.

* The pdfwrite and ps2write (and related) devices can now be
forced to \"flatten\" glyphs into \"basic\" marking operations
(rather than writing fonts to the output), by giving
the -dNoOutputFonts command line option (defaults to \"false\").

* PostScript programs can now use get_params or get_param to
determine if a page contains color markings by reading the
pageneutralcolor state from the device (so whether the page
is \"color\" or \"mono\"). Note that this is only accurate when in
clist mode, so -dMaxBitmap=0 and -dGrayDetection=true should
both be used.

* The pdfwrite device now supports Link annotations with GoTo
and GoToR actions.

* The pdfwrite device now supports BMC/BDC/EMC pdfmarks

* Regarding the new color management for the pdfwrite device
introduced in the previous release, the proscription on using
the new color management when producing PDF/A-1 compliant files
is now lifted. To reiterate, also, with the new color
management implementation, using the UseCIEColor option is
strongly discouraged. For further information on the new
pdfwrite color management, see in Ps2pdf.htm the
\"Color Conversion and Management\" section.

* Plus the usual round of bug fixes, compatibility changes,
and incremental improvements.
For details see the News.htm and History9.htm files.

Wed Sep 17 14:00:00 2014 jsmeixAATTsuse.de
- Version upgrade to 9.15rc2 (second release candidate for 9.15).
Ghostscript upstream QA highlighted a couple of issues
that they felt warranted a fresh release candidate.
For details see the History9.htm file.

Tue Sep 9 14:00:00 2014 jsmeixAATTsuse.de
- Version upgrade to 9.15rc1 (first release candidate for 9.15).
For details see the News.htm and History9.htm files.
- ppc64le-support.patch is no longer needed because
it is fixed in the upstream sources.
- Removed trailing whitespaces in spec file and changes file.

Thu Mar 27 13:00:00 2014 jsmeixAATTsuse.de
- Version upgrade to 9.14. Primarily a maintenance release.
Highlights in this release include (excerpt):

* pdfwrite now uses the same color management engine as
Ghostscript rendering devices (by default LCMS2). For
the duration of this release a new switch -dPDFUseOldCMS
is available which will restore the old color management.
See: \"Color Conversion and Management\" in Ps2pdf.htm
Due to constraints of the PDF/A-1 specification, the new color
management does not yet apply when producing PDF/A files.

* A new device \'eps2write\' has been added which allows for the
creation of EPS files using the ps2write device instead of
the deprecated and removed pswrite device. The epswrite device
is now also deprecated and will be removed in a future release.

* Ghostscript has a new \"pwgraster\" output device for PWG Raster
output.

* The CUPS device now has improved support for PPD-less printing.
For details see the News.htm and History9.htm files.

Fri Dec 13 13:00:00 2013 uweigandAATTde.ibm.com
- ppc64le-support.patch from IBM fixes endianness
in lcms (the Little-CMS library) to support the new
architecture ppc64le (IBM Power PC Little Endian architecture)
because ppc64 is big-endian and ppc64le is little-endian
and lcms has a hard-coded check that assumes PowerPC
is always big-endian which is incorrect on ppc64le.
The fix is already in the main Little-CMS repository
by this Git commit
https://github.com/mm2/Little-CMS/commit/b4f5c91a2c1582bd284f0d0f49cb43e2c2235a79
(There are some cosmetic changes in the upstream patch.)
It is not yet in the imported copy in Ghostscript.
IBM will work with upstream to get the fix imported too.

Tue Sep 3 14:00:00 2013 jsmeixAATTsuse.de
- Version upgrade to 9.10. Primarily a maintenance release.
Highlights in this release include:

* LittleCMS2 and libpng have both been updated to the
latest versions.

* The URW Postscript font set has been updated to the
latest version, fixing many compatibility problems
with the Adobe fonts.

* The CUPS filters gstoraster and gstopxl have been
removed from Ghostscript. Those filters are now provided by
cups-filters (a free software package hosted by OpenPrinting)
that contains all CUPS filters needed by CUPS under Linux
(see also the openSUSE issue bnc#735404 comment#44 at
https://bugzilla.novell.com/show_bug.cgi?id=735404#c44).
For details see the News.htm and History9.htm files.
- fix-undefined-operation.patch is no longer needed because
it is fixed in the upstream sources.

Thu Aug 29 14:00:00 2013 jsmeixAATTsuse.de
- Version upgrade to 9.10rc1 (release candidate for the 9.10 version).
For details see the News.htm and History9.htm files.
- Prepare spec files to build both releases and release candidates
easily in the future by using special different version strings.
- fix-undefined-operation.patch fixes
http://bugs.ghostscript.com/show_bug.cgi?id=694546
- Removed BuildRequires for liblcms-devel because it is not needed
when we build Ghostscript that works in compliance with upstream
(see https://bugzilla.novell.com/show_bug.cgi?id=828751#c5).

Wed Mar 27 13:00:00 2013 mmeisterAATTsuse.com
- Added url as source.
Please see http://en.opensuse.org/SourceUrls

Tue Feb 19 13:00:00 2013 jsmeixAATTsuse.de
- Version upgrade to 9.07.

* As of this release (9.07), Ghostscript is distributed
under the GNU Affero General Public License (AGPL).

* Ghostscript has been extended to support file sizes >4Gb
in particular reading and writing PDF files.

* Color management enhancements. Full details of the color
management features can be found in: GS9_Color_Management.pdf

* The pdfwrite devices now supports linearized (or optimized
for fast web view) output directly (\"-dFastWebView\").

* With the addition of linearisation to pdfwrite, pdfopt.ps
has become redundant. Since it is difficult to maintain,
has a number of bugs, and is believed not to work properly
anyway, it is removed. Accordingly the pdfopt shell script
that used pdfopt.ps is also removed.

Thu Jan 3 13:00:00 2013 jsmeixAATTsuse.de
- Provide libijs (that is not done via \"configure --with-ijs\")
because libijs is needed by the pdftoijs filter in the
cups-filters package (see the README file in cups-filters).

Thu Sep 27 14:00:00 2012 mmeisterAATTsuse.com
- Version upgrade to 9.06. Mainly a bugfix release.

* pdfwrite announcements:
pdfwrite now supports the creation of PDF/A-2 files.
For further details see the NEWS file.

* removed moribund dumphint tool, see History9.htm and
http://bugs.ghostscript.com/show_bug.cgi?id=693223

Mon Sep 24 14:00:00 2012 idonmezAATTsuse.com
- \"export SUSE_ASNEEDED=0\" disables -Wl,--as-needed linker flags,
see http://bugs.ghostscript.com/show_bug.cgi?id=693100

Thu May 10 14:00:00 2012 jsmeixAATTsuse.de
- Require Ghostscript\'s font packages because the
Ghostscript package provides the \"Fontmap\" file
/usr/share/ghostscript//Resource/Init/Fontmap.GS
which lists Ghostscript\'s fonts but the fonts itself
are provided in the separated packages ghostscript-fonts-std
and ghostscript-fonts-other so that a RPM requirement
is needed to make sure that Ghostscript has its fonts.
- Extract the catalog of devices which are actually built-in
in exactly this Ghostscript and provide it as catalog.devices
in the Ghostscript package.

Tue Apr 24 14:00:00 2012 jsmeixAATTsuse.de
- Install documentation which is not installed by default
(LICENSE doc/AUTHORS doc/COPYING doc/thirdparty.htm
doc/WhatIsGS.htm doc/GS9_Color_Management.pdf
doc/gs-vms.hlp doc/Ps2ps2.htm).
- Add a link from SUSE\'s usual documentation directory
(/usr/share/doc/packages/ghostscript/) to Ghostscript\'s
documentation directory (/usr/share/ghostscript/9.05/doc/)
because \"configure --docdir=...\" does not work.
- Let ghostscript-mini \"Conflicts: ghostscript-library\".

Wed Mar 28 14:00:00 2012 jsmeixAATTsuse.de
- Require only the basic fonts for Ghostscript
(package ghostscript-fonts-std) but do not recommend
optional fonts (package ghostscript-fonts-other).

Fri Mar 23 13:00:00 2012 jsmeixAATTsuse.de
- Cleaned up BuildRequires.
- Explicitly specify configure --with-
* versus --without-
*
in ghostscript.spec versus ghostscript-mini.spec
to make the differences clear.

Tue Mar 20 13:00:00 2012 jsmeixAATTsuse.de
- Initial ghostscript-mini package.


  
ICM