app-text / xpdf

Versions

v4.01.01 :: 0 :: gentoo

Modified

Friday 13 September 19:52

License

GPL-2 GPL-3 i18n? ( BSD )

Keywords

~amd64 ~x86

USE flags

cmyk cups i18n libpaper metric opi png textselect utils

USE flags

General

cmyk

Include support for CMYK rasterization

cups

Add support for CUPS (Common Unix Printing System)

i18n

Enable support non-UTF8 national charsets

libpaper

Use app-text/libpaper to get paper preferences

metric

Use A4 instead of US Letter paper size by default for PostScript output. This option has effect only if libpaper USE flag is disabled

opi

Include support for OPI (Open Prepress Interface) comments

png

Add support for libpng (PNG images)

textselect

Allow text selection

utils

Install command-line PDF converters and various utilities

Dependencies

app-text / libpaper : Library for handling paper characteristics

dev-qt / qtnetwork : Network abstraction library for the Qt5 framework

dev-qt / qtprintsupport : Printing support library for the Qt5 framework

dev-qt / qtwidgets : Set of components for creating classic desktop-style UIs for the Qt5 framework

media-libs / freetype : A high-quality and portable font engine

media-libs / libpng : Portable Network Graphics library

net-print / cups : The Common Unix Printing System

sys-libs / zlib : Standard (de)compression library

Runtime Dependencies

app-text / libpaper : Library for handling paper characteristics

dev-qt / qtnetwork : Network abstraction library for the Qt5 framework

dev-qt / qtprintsupport : Printing support library for the Qt5 framework

dev-qt / qtwidgets : Set of components for creating classic desktop-style UIs for the Qt5 framework

media-fonts / urw-fonts : free good quality fonts gpl'd by URW++

media-libs / freetype : A high-quality and portable font engine

media-libs / libpng : Portable Network Graphics library

net-print / cups : The Common Unix Printing System

sys-libs / zlib : Standard (de)compression library

Bugs

684846

app-text/xpdf: Unspecified vulnerability (CVE-2019-{9877,9878})

687112

app-text/xpdf: stack-based buffer over-read exists in PostScriptFunction::transform in Function.cc

687608

app-text/xpdf: out-of-bounds read vulnerability in the function FlateStream::getChar() at (Stream.cc)

Change logs

Thursday 21 March

Repository mirror & CI · gentoo
Merge updates from master

Thursday 21 March

Andrew Savchenko · gentoo
app-text/xpdf: remove old and vulnerable version
Bug: https://bugs.gentoo.org/681112 Bug: https://bugs.gentoo.org/681140 Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Andrew Savchenko <bircoph@gentoo.org>

Thursday 21 March

Andrew Savchenko · gentoo
app-text/xpdf: security version bump
xpdf-4.01.01 fixes several vulnerabilities and problems reported by Loginsoft, including CVE-2019-9589. CVE-2019-9588 and CVE-2019-9587 are probably fixed as well, but it is not clear from ChangeLog: The PDFDoc(BaseStream) initializer wasn't working correctly. Fixed a missing array bounds check in PSOutputDev. [Thanks to Loginsoft for the bug report.] ^-- CVE-2019-9589 If the "U" string used for RC4 decryption is short, Adobe apparently zero-pads it, so Xpdf now does the same. ^-- Maybe CVE-2019-9588 Pdffonts now checks more carefully for loops between objects. ^-- Looks like CVE-2019-9587 Fixed a problem parsing large real numbers. [Thanks to Loginsoft for the bug report.] Bug: https://bugs.gentoo.org/681112 Bug: https://bugs.gentoo.org/681140 Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Andrew Savchenko <bircoph@gentoo.org>

Tuesday 12 March

Repository mirror & CI · gentoo
Merge updates from master

Tuesday 12 March

Andrew Savchenko · gentoo
app-text/xpdf: re-add to the tree
Xpdf is back on track again with modern interface and active development :) Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Andrew Savchenko <bircoph@gentoo.org>