Subject: CVS commit: [pkgsrc-2005Q1] pkgsrc/print/a2ps
To: None <>
From: Soren Jacobsen <>
List: pkgsrc-changes
Date: 06/09/2005 20:05:49
Module Name:	pkgsrc
Committed By:	snj
Date:		Thu Jun  9 20:05:49 UTC 2005

Modified Files:
	pkgsrc/print/a2ps [pkgsrc-2005Q1]: Makefile distinfo
Added Files:
	pkgsrc/print/a2ps/patches [pkgsrc-2005Q1]: patch-ad patch-ae

Log Message:
Pullup ticket 545 - requested by Lubomir Sedlacik
security fix for a2ps

Revisions pulled up:
- pkgsrc/print/a2ps/Makefile		1.54
- pkgsrc/print/a2ps/distinfo		1.9
- pkgsrc/print/a2ps/patches/patch-ad	1.4
- pkgsrc/print/a2ps/patches/patch-ae	1.4

    Module Name:    pkgsrc
    Committed By:   salo
    Date:           Thu Jun  9 14:53:49 UTC 2005

    Modified Files:
            pkgsrc/print/a2ps: Makefile distinfo
    Added Files:
            pkgsrc/print/a2ps/patches: patch-ad patch-ae

    Log Message:
    Security fix for CAN-2004-1377:

    "The fixps and psmandup scripts in a2ps allow local users to overwrite
     arbitrary files via a symlink attack on temporary files."

    Patches from Gentoo with few minor issues corrected.

To generate a diff of this commit:
cvs rdiff -r1.51 -r1.51.2.1 pkgsrc/print/a2ps/Makefile
cvs rdiff -r1.8 -r1.8.2.1 pkgsrc/print/a2ps/distinfo
cvs rdiff -r0 -r1.3.12.1 pkgsrc/print/a2ps/patches/patch-ad \

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.