mirror of
https://github.com/Stichting-MINIX-Research-Foundation/pkgsrc-ng.git
synced 2025-09-19 01:13:56 -04:00
43 lines
1.3 KiB
Groff
43 lines
1.3 KiB
Groff
$NetBSD: patch-contrib_pdfmark_pdfroff.man,v 1.1 2011/07/19 21:09:39 tez Exp $
|
|
|
|
Fix many temporary file handling issues, including in pdfroff
|
|
(resolves CVE-2009-5044 / SA44999)
|
|
Patches copied from:
|
|
http://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/groff/groff-1.20.1-owl-tmp.diff?rev=1.2
|
|
Modified for pkgsrc and excluded a documentaion change to doc/groff.texinfo
|
|
that changes a `makeinfo' is too old warning into a fatal error.
|
|
|
|
Added patch to make pdfroff.sh use -dSAFER
|
|
See http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538338 for why.
|
|
|
|
--- contrib/pdfmark/pdfroff.man.orig 2009-01-09 14:25:52.000000000 +0000
|
|
+++ contrib/pdfmark/pdfroff.man
|
|
@@ -521,7 +521,7 @@ defaults to
|
|
.IP
|
|
.I
|
|
.ad l
|
|
-.NH gs \-dBATCH \-dQUIET \-dNOPAUSE \-sDEVICE=pdfwrite \-sOutputFile=\-
|
|
+.NH gs \-dBATCH \-dQUIET \-dNOPAUSE \-dSAFER \-sDEVICE=pdfwrite \-sOutputFile=\-
|
|
.ad
|
|
.RE
|
|
.
|
|
@@ -529,7 +529,7 @@ defaults to
|
|
.B GROFF_TMPDIR
|
|
Identifies the directory in which
|
|
.B pdfroff
|
|
-should create temporary files.
|
|
+should create a subdirectory for its temporary files.
|
|
If
|
|
.B \%GROFF_TMPDIR
|
|
is
|
|
@@ -541,7 +541,8 @@ and
|
|
.B TEMP
|
|
are considered in turn, as possible temporary file repositories.
|
|
If none of these are set, then temporary files are created
|
|
-in the current directory.
|
|
+in a subdirectory of
|
|
+.BR /tmp .
|
|
.
|
|
.TP
|
|
.B GROFF_GHOSTSCRIPT_INTERPRETER
|