CVS commit: pkgsrc/print/html2ps

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/print/html2ps
From: "Ryo ONODERA" <ryoon%netbsd.org@localhost>
Date: Fri, 18 Nov 2011 21:59:02 +0000

Module Name:    pkgsrc
Committed By:   ryoon
Date:           Fri Nov 18 21:59:02 UTC 2011

Modified Files:
        pkgsrc/print/html2ps: Makefile distinfo
        pkgsrc/print/html2ps/patches: patch-aa

Log Message:
Update to 1.0b7

I was unaware of version up.

* Fix html2psrc path in patch-aa

Changelog:
  051211 1.0b5   Bug fixes. Added -M option.
  091021 1.0b6   "Security" fix. Changed behavior for SSI, to avoid having
                 arbitrary readable files disclosed on a web server that uses
                 html2ps in a web application (cgi script etc), allowing HTML
                 files to be uploaded for conversion. Setting up a service like
                 this is begging for trouble in my opinion. (Is /bin/cat also
                 a vulnerability, since one can use it in a web app, allowing
                 uploading arbitrary parameters to it?)
  100507 1.0b7   Fixed a bug introduced by the previous bug fix...


To generate a diff of this commit:
cvs rdiff -u -r1.29 -r1.30 pkgsrc/print/html2ps/Makefile
cvs rdiff -u -r1.10 -r1.11 pkgsrc/print/html2ps/distinfo
cvs rdiff -u -r1.7 -r1.8 pkgsrc/print/html2ps/patches/patch-aa

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index