Bug#584663: Bug#584653: Patch to close CVE-2010-2055

2010-11-20 Thread paul . szabo
Dear Jonas, >>> deb http://debian.jones.dk/ squeeze printing >> >>I have now upgraded a machine to squeeze and tried your >>ghostscript 9.00~dfsg-1~0jones1 >>package, it works perfectly, thanks. >>[snip] >>Seems to me that in your package, the default is -P- (not -P). >>Should not this be mentione

Bug#584663: Bug#584653: Patch to close CVE-2010-2055

2010-11-20 Thread Jonas Smedegaard
Hi Paul, On Sun, Nov 21, 2010, paul.sz...@sydney.edu.au wrote (at bug#58653): ... I have backported it ... deb http://debian.jones.dk/ squeeze printing I have now upgraded a machine to squeeze and tried your ghostscript 9.00~dfsg-1~0jones1 package, it works perfectly, thanks. [snip] Seems to

Bug#584653: Patch to close CVE-2010-2055

2010-11-20 Thread Jonas Smedegaard
Hi Paul, On Sun, Nov 21, 2010, paul.sz...@sydney.edu.au wrote: ... I have backported it ... deb http://debian.jones.dk/ squeeze printing I have now upgraded a machine to squeeze and tried your ghostscript 9.00~dfsg-1~0jones1 package, it works perfectly, thanks. Great! Thanks for the feedbac

Bug#584653: Patch to close CVE-2010-2055

2010-11-20 Thread paul . szabo
Dear Julien, >> Will this make it into squeeze? ... > See the version graph at > http://bugs.debian.org/584653 > The affected versions seem to be marked correctly. What I was asking... When the squeeze release is being put together and they look at ghostscript, will they say: 1 - The bug is don

Bug#584653: Patch to close CVE-2010-2055

2010-11-20 Thread Julien Cristau
On Sun, Nov 21, 2010 at 07:39:16 +1100, paul.sz...@sydney.edu.au wrote: > Will this make it into squeeze? Seems not, being a backport. > Should not this bug #584653 be left open (not "done"), as a > reminder that squeeze is insecure? Or maybe, that is tracked > in some way I am not aware of. > Se

Bug#584653: Patch to close CVE-2010-2055

2010-11-20 Thread paul . szabo
Dear Jonas, > ... I have backported it ... > deb http://debian.jones.dk/ squeeze printing I have now upgraded a machine to squeeze and tried your ghostscript 9.00~dfsg-1~0jones1 package, it works perfectly, thanks. Will this make it into squeeze? Seems not, being a backport. Should not this bug

Bug#584653: Patch to close CVE-2010-2055

2010-10-31 Thread Jonas Smedegaard
On Sat, Oct 23, 2010 at 06:01:27PM -0500, Julián Moreno Patiño wrote: The previous patch does not fix this bug completely . Complete patch to fix CVE-2010-2055 attached. Hi Julián and others, I now completed packaging a new upstream release of ghostscript targeted experimental - it is curren

Bug#584653: Patch to close CVE-2010-2055

2010-10-23 Thread Julián Moreno Patiño
Hi, I forget it, the Patch only apply to squeeze-sid version. Kind Regards, -- Julián Moreno Patiño Registered GNU Linux User ID 488513 PGP KEY ID 6168BF60 -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.