25f6510de5
Rebase notes:
- OpenJPEG support has been re-enabled
- ijs-config custom tool removed (pkg-config is used by default now)
- no API/ABI changes according to upstream
- some patches updated to 'git format-patch' format and renamed
- squashed 'ghostscript-Fontmap.local.patch' into
'ghostscript-9.20-runlibfileifexists.patch'
- rest of patches deleted (irrelevant for current version), mostly
because upstream has fixed those issues in some way
23 lines
922 B
Diff
23 lines
922 B
Diff
From 32d8df77bf3326f708c13d6913547c01ce6d728c Mon Sep 17 00:00:00 2001
|
|
From: "David Kaspar [Dee'Kej]" <dkaspar@redhat.com>
|
|
Date: Fri, 7 Oct 2016 13:57:01 +0200
|
|
Subject: [PATCH] Make sure 'dvipdf' is being run securely
|
|
|
|
---
|
|
lib/dvipdf | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/lib/dvipdf b/lib/dvipdf
|
|
index 802aeab..c92dfb0 100755
|
|
--- a/lib/dvipdf
|
|
+++ b/lib/dvipdf
|
|
@@ -43,4 +43,4 @@ fi
|
|
|
|
# We have to include the options twice because -I only takes effect if it
|
|
# appears before other options.
|
|
-exec dvips -Ppdf $DVIPSOPTIONS -q -f "$infile" | $GS_EXECUTABLE $OPTIONS -q -P- -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pdfwrite -sstdout=%stderr -sOutputFile="$outfile" $OPTIONS -c .setpdfwrite -
|
|
+exec dvips -R -Ppdf $DVIPSOPTIONS -q -f "$infile" | $GS_EXECUTABLE $OPTIONS -q -P- -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pdfwrite -sstdout=%stderr -sOutputFile="$outfile" $OPTIONS -c .setpdfwrite -
|
|
--
|
|
2.7.4
|
|
|