Accepting request 635540 from home:jsmeix:branches:Printing
ghostscript version upgrade to 9.25rc1 (first release candidate for 9.25) which provides in particular more security bufgixes, see https://ghostscript.com/pipermail/gs-devel/2018-September/010098.html OBS-URL: https://build.opensuse.org/request/show/635540 OBS-URL: https://build.opensuse.org/package/show/Printing/ghostscript?expand=0&rev=94
This commit is contained in:
Johannes Meixner
Git OBS Bridge
parent
5ee9ca839d
commit
c0eb0b9d23
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:e613b2376f01882e82e0cf08f6caa3c5719793c4e31dd7d4a8e87d61d371005f
|
||||
size 42010597
|
||||
3
ghostscript-9.25rc1.tar.gz
Normal file
3
ghostscript-9.25rc1.tar.gz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:30955a417fac3d9faeb37ec6ef3f9309d0f6d3c2bce3ea1073fe547d5f755615
|
||||
size 42019310
|
||||
@ -1,3 +1,35 @@
|
||||
-------------------------------------------------------------------
|
||||
Thu Sep 13 14:14:39 CEST 2018 - jsmeix@suse.de
|
||||
|
||||
- Version upgrade to 9.25rc1 (first release candidate for 9.25).
|
||||
Highlights in this release include:
|
||||
* This release fixes problems with argument handling, some
|
||||
unintended results of the security fixes to the SAFER file
|
||||
access restrictions (specifically accessing ICC profile files),
|
||||
and some additional security issues over the 9.24 release.
|
||||
* Security issues have been the primary focus of this release,
|
||||
including solving several (well publicised) real
|
||||
and potential exploits.
|
||||
PLEASE NOTE:
|
||||
We (i.e. Ghostscript upstream) strongly urge users to upgrade
|
||||
to this latest release to avoid these issues.
|
||||
* Avoid that ps2epsi fails with
|
||||
'Error: /undefined in --setpagedevice--'
|
||||
Recent changes required to harden SAFER mode mean that
|
||||
it is no longer possible to run ps2epsi in SAFER mode,
|
||||
because it relies upon unsafe Ghostscript non-standard
|
||||
extension operators.
|
||||
Removing SAFER and DELAYSAFER, and the code to reset SAFER,
|
||||
allow ps2epsi to run as well as it ever did (ie badly).
|
||||
This program (i.e. ps2epsi) should now be considered unsafe,
|
||||
you should not use it on untrusted PostScript programs.
|
||||
Likely we (i.e. Ghostscript upstream) will deprecate and
|
||||
remove this program in future.
|
||||
For details see the News.htm and History9.htm files.
|
||||
Regarding installing packages (in particular release candidates)
|
||||
from the openSUSE build service development project "Printing"
|
||||
see https://build.opensuse.org/project/show/Printing
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Sep 13 10:25:21 CEST 2018 - jsmeix@suse.de
|
||||
|
||||
|
||||
@ -37,34 +37,36 @@ Url: http://www.ghostscript.com/
|
||||
# But only with the alphabetic prefix "9.pre15rc1" would be older than the previous version number "9.14"
|
||||
# because rpmvercmp would treat 9.pre15rc1 as 9.pre.15.rc1 and letters are older than numbers
|
||||
# so that we keep additionally the previous version number to upgrade from the previous version:
|
||||
#Version: 9.22pre23rc1
|
||||
# Normal version for Ghostscript releases is the upstream version:
|
||||
Version: 9.24
|
||||
Version: 9.24pre25rc1
|
||||
Release: 0
|
||||
# Normal version for Ghostscript releases is the upstream version:
|
||||
#Version: 9.24
|
||||
# tarball_version is used below to specify the directory via "setup -n":
|
||||
# Special tarball_version needed for Ghostscript release candidates e.g. "define tarball_version 9.15rc1".
|
||||
# For Ghostscript releases tarball_version and version are the same (i.e. the upstream version):
|
||||
%define tarball_version %{version}
|
||||
#define tarball_version 9.23rc1
|
||||
#define tarball_version %{version}
|
||||
%define tarball_version 9.25rc1
|
||||
# built_version is used below in the install and files sections:
|
||||
# Separated built_version needed in case of Ghostscript release candidates e.g. "define built_version 9.15".
|
||||
# For Ghostscript releases built_version and version are the same (i.e. the upstream version):
|
||||
%define built_version %{version}
|
||||
#define built_version 9.23
|
||||
#define built_version %{version}
|
||||
%define built_version 9.25
|
||||
# Source0...Source9 is for sources from upstream:
|
||||
# Special URLs for Ghostscript release candidates:
|
||||
# see https://github.com/ArtifexSoftware/ghostpdl-downloads/releases
|
||||
# URL for Source0: https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs923rc1/ghostscript-9.23rc1.tar.gz
|
||||
# How to download it:
|
||||
# wget -O ghostscript-9.23rc1.tar.gz https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs923rc1/ghostscript-9.23rc1.tar.gz
|
||||
#Source0: ghostscript-%{tarball_version}.tar.gz
|
||||
# URL for Source0:
|
||||
# wget -O ghostscript-9.25rc1.tar.gz https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs925rc1/ghostscript-9.25rc1.tar.gz
|
||||
# URL for MD5 checksums:
|
||||
# wget -O gs925rc1.MD5SUMS https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs925rc1/MD5SUMS
|
||||
# MD5 checksum for Source0: 2dc56f05c4e479b9a2cbb8221f669c8f ghostscript-9.25rc1.tar.gz
|
||||
Source0: ghostscript-%{tarball_version}.tar.gz
|
||||
# Normal URLs for Ghostscript releases:
|
||||
# URL for Source0:
|
||||
# wget -O ghostscript-9.24.tar.gz https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs924/ghostscript-9.24.tar.gz
|
||||
# URL for MD5 checksums:
|
||||
# wget -O gs924.MD5SUMS https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs924/MD5SUMS
|
||||
# MD5 checksum for Source0: c5c3fa8eb737a6540814314a9d9e4995
|
||||
Source0: ghostscript-%{version}.tar.gz
|
||||
# MD5 checksum for Source0: c5c3fa8eb737a6540814314a9d9e4995 ghostscript-9.24.tar.gz
|
||||
#Source0: ghostscript-%{version}.tar.gz
|
||||
# Patch0...Patch9 is for patches from upstream:
|
||||
# Source10...Source99 is for sources from SUSE which are intended for upstream:
|
||||
# Patch10...Patch99 is for patches from SUSE which are intended for upstream:
|
||||
|
||||
@ -1,3 +1,35 @@
|
||||
-------------------------------------------------------------------
|
||||
Thu Sep 13 14:14:39 CEST 2018 - jsmeix@suse.de
|
||||
|
||||
- Version upgrade to 9.25rc1 (first release candidate for 9.25).
|
||||
Highlights in this release include:
|
||||
* This release fixes problems with argument handling, some
|
||||
unintended results of the security fixes to the SAFER file
|
||||
access restrictions (specifically accessing ICC profile files),
|
||||
and some additional security issues over the 9.24 release.
|
||||
* Security issues have been the primary focus of this release,
|
||||
including solving several (well publicised) real
|
||||
and potential exploits.
|
||||
PLEASE NOTE:
|
||||
We (i.e. Ghostscript upstream) strongly urge users to upgrade
|
||||
to this latest release to avoid these issues.
|
||||
* Avoid that ps2epsi fails with
|
||||
'Error: /undefined in --setpagedevice--'
|
||||
Recent changes required to harden SAFER mode mean that
|
||||
it is no longer possible to run ps2epsi in SAFER mode,
|
||||
because it relies upon unsafe Ghostscript non-standard
|
||||
extension operators.
|
||||
Removing SAFER and DELAYSAFER, and the code to reset SAFER,
|
||||
allow ps2epsi to run as well as it ever did (ie badly).
|
||||
This program (i.e. ps2epsi) should now be considered unsafe,
|
||||
you should not use it on untrusted PostScript programs.
|
||||
Likely we (i.e. Ghostscript upstream) will deprecate and
|
||||
remove this program in future.
|
||||
For details see the News.htm and History9.htm files.
|
||||
Regarding installing packages (in particular release candidates)
|
||||
from the openSUSE build service development project "Printing"
|
||||
see https://build.opensuse.org/project/show/Printing
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Sep 13 10:25:21 CEST 2018 - jsmeix@suse.de
|
||||
|
||||
|
||||
@ -57,34 +57,36 @@ Url: http://www.ghostscript.com/
|
||||
# But only with the alphabetic prefix "9.pre15rc1" would be older than the previous version number "9.14"
|
||||
# because rpmvercmp would treat 9.pre15rc1 as 9.pre.15.rc1 and letters are older than numbers
|
||||
# so that we keep additionally the previous version number to upgrade from the previous version:
|
||||
#Version: 9.22pre23rc1
|
||||
# Normal version for Ghostscript releases is the upstream version:
|
||||
Version: 9.24
|
||||
Version: 9.24pre25rc1
|
||||
Release: 0
|
||||
# Normal version for Ghostscript releases is the upstream version:
|
||||
#Version: 9.24
|
||||
# tarball_version is used below to specify the directory via "setup -n":
|
||||
# Special tarball_version needed for Ghostscript release candidates e.g. "define tarball_version 9.15rc1".
|
||||
# For Ghostscript releases tarball_version and version are the same (i.e. the upstream version):
|
||||
%define tarball_version %{version}
|
||||
#define tarball_version 9.23rc1
|
||||
#define tarball_version %{version}
|
||||
%define tarball_version 9.25rc1
|
||||
# built_version is used below in the install and files sections:
|
||||
# Separated built_version needed in case of Ghostscript release candidates e.g. "define built_version 9.15".
|
||||
# For Ghostscript releases built_version and version are the same (i.e. the upstream version):
|
||||
%define built_version %{version}
|
||||
#define built_version 9.23
|
||||
#define built_version %{version}
|
||||
%define built_version 9.25
|
||||
# Source0...Source9 is for sources from upstream:
|
||||
# Special URLs for Ghostscript release candidates:
|
||||
# see https://github.com/ArtifexSoftware/ghostpdl-downloads/releases
|
||||
# URL for Source0: https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs923rc1/ghostscript-9.23rc1.tar.gz
|
||||
# How to download it:
|
||||
# wget -O ghostscript-9.23rc1.tar.gz https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs923rc1/ghostscript-9.23rc1.tar.gz
|
||||
#Source0: ghostscript-%{tarball_version}.tar.gz
|
||||
# URL for Source0:
|
||||
# wget -O ghostscript-9.25rc1.tar.gz https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs925rc1/ghostscript-9.25rc1.tar.gz
|
||||
# URL for MD5 checksums:
|
||||
# wget -O gs925rc1.MD5SUMS https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs925rc1/MD5SUMS
|
||||
# MD5 checksum for Source0: 2dc56f05c4e479b9a2cbb8221f669c8f ghostscript-9.25rc1.tar.gz
|
||||
Source0: ghostscript-%{tarball_version}.tar.gz
|
||||
# Normal URLs for Ghostscript releases:
|
||||
# URL for Source0:
|
||||
# wget -O ghostscript-9.24.tar.gz https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs924/ghostscript-9.24.tar.gz
|
||||
# URL for MD5 checksums:
|
||||
# wget -O gs924.MD5SUMS https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs924/MD5SUMS
|
||||
# MD5 checksum for Source0: c5c3fa8eb737a6540814314a9d9e4995
|
||||
Source0: ghostscript-%{version}.tar.gz
|
||||
# MD5 checksum for Source0: c5c3fa8eb737a6540814314a9d9e4995 ghostscript-9.24.tar.gz
|
||||
#Source0: ghostscript-%{version}.tar.gz
|
||||
# Patch0...Patch9 is for patches from upstream:
|
||||
# Source10...Source99 is for sources from SUSE which are intended for upstream:
|
||||
# Patch10...Patch99 is for patches from SUSE which are intended for upstream:
|
||||
|
||||
Loading…
Reference in New Issue
Block a user