diff options
| author | Jörg Frings-Fürst <debian@jff-webhosting.net> | 2015-12-05 14:58:37 +0100 |
|---|---|---|
| committer | Jörg Frings-Fürst <debian@jff-webhosting.net> | 2015-12-05 14:58:37 +0100 |
| commit | a19a390f6538d9df8f125d7498a2e5df57612387 (patch) | |
| tree | 8368ee073c9d81f711ec5500b0e12198914dba12 /debian/patches | |
| parent | 314e87026787b907f8fc77f44e1b5ce79cb9528f (diff) | |
CVE-2015-8327; rename patches
Diffstat (limited to 'debian/patches')
| -rw-r--r-- | debian/patches/0001-paps.patch (renamed from debian/patches/0500-paps.patch) | 0 | ||||
| -rw-r--r-- | debian/patches/0100-pdf_header.patch (renamed from debian/patches/0002-pdf_header.patch) | 0 | ||||
| -rw-r--r-- | debian/patches/0105-ppd_trailing_whitespace.patch (renamed from debian/patches/0010-ppd_trailing_whitespace.patch) | 0 | ||||
| -rw-r--r-- | debian/patches/0110-fixed-segfault-when-creating-logfile.patch (renamed from debian/patches/fixed-segfault-when-creating-logfile.patch) | 0 | ||||
| -rw-r--r-- | debian/patches/0115-r7406_also_consider_the_back_tick_as_an_illegal_shell_escape_character.patch | 19 | ||||
| -rw-r--r-- | debian/patches/0600-spelling-errors.diff (renamed from debian/patches/0001-spelling-errors.diff) | 0 | ||||
| -rw-r--r-- | debian/patches/series | 11 |
7 files changed, 25 insertions, 5 deletions
diff --git a/debian/patches/0500-paps.patch b/debian/patches/0001-paps.patch index 39cccd4..39cccd4 100644 --- a/debian/patches/0500-paps.patch +++ b/debian/patches/0001-paps.patch diff --git a/debian/patches/0002-pdf_header.patch b/debian/patches/0100-pdf_header.patch index 104dc0b..104dc0b 100644 --- a/debian/patches/0002-pdf_header.patch +++ b/debian/patches/0100-pdf_header.patch diff --git a/debian/patches/0010-ppd_trailing_whitespace.patch b/debian/patches/0105-ppd_trailing_whitespace.patch index 7efd6ac..7efd6ac 100644 --- a/debian/patches/0010-ppd_trailing_whitespace.patch +++ b/debian/patches/0105-ppd_trailing_whitespace.patch diff --git a/debian/patches/fixed-segfault-when-creating-logfile.patch b/debian/patches/0110-fixed-segfault-when-creating-logfile.patch index 29a743f..29a743f 100644 --- a/debian/patches/fixed-segfault-when-creating-logfile.patch +++ b/debian/patches/0110-fixed-segfault-when-creating-logfile.patch diff --git a/debian/patches/0115-r7406_also_consider_the_back_tick_as_an_illegal_shell_escape_character.patch b/debian/patches/0115-r7406_also_consider_the_back_tick_as_an_illegal_shell_escape_character.patch new file mode 100644 index 0000000..8e5e404 --- /dev/null +++ b/debian/patches/0115-r7406_also_consider_the_back_tick_as_an_illegal_shell_escape_character.patch @@ -0,0 +1,19 @@ +Description: foomatic-rip: SECURITY FIX: Also consider the back tick ('`') as + an illegal shell escape character. Thanks to Michal Kowalczyk from the Google + Security Team for the hint. +Author: Till Kamppeter <till.kamppeter@gmail.com> +Bug-CVE: CVE-2015-8327 +Origin: upstream +Last-Update: 2015-11-26 + +--- a/util.c ++++ b/util.c +@@ -31,7 +31,7 @@ + #include <assert.h> + + +-const char* shellescapes = "|<>&!$\'\"#*?()[]{}"; ++const char* shellescapes = "|<>&!$\'\"`#*?()[]{}"; + + const char * temp_dir() + { diff --git a/debian/patches/0001-spelling-errors.diff b/debian/patches/0600-spelling-errors.diff index 23f0e30..23f0e30 100644 --- a/debian/patches/0001-spelling-errors.diff +++ b/debian/patches/0600-spelling-errors.diff diff --git a/debian/patches/series b/debian/patches/series index 714d302..baee154 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,5 +1,6 @@ -0010-ppd_trailing_whitespace.patch -0002-pdf_header.patch -0001-spelling-errors.diff -fixed-segfault-when-creating-logfile.patch -0500-paps.patch +0105-ppd_trailing_whitespace.patch +0100-pdf_header.patch +0600-spelling-errors.diff +0110-fixed-segfault-when-creating-logfile.patch +0001-paps.patch +0115-r7406_also_consider_the_back_tick_as_an_illegal_shell_escape_character.patch |