Author: Didier Raboud
Revision Date: 2015-06-11 08:41:13 UTC

* New upstream release
  - Cope with the {pdfto,sys5}ippprinter filter rename

Author: Didier Raboud
Revision Date: 2015-06-11 08:41:13 UTC

* New upstream release
  - Cope with the {pdfto,sys5}ippprinter filter rename

Author: Till Kamppeter
Revision Date: 2015-04-09 22:40:03 UTC

debian/patches/cups-browsed-fix-numeric-ids-of-gsources.patch:
cups-browsed: Numeric IDs for GSources of the glib event
loop must be positive integers greater than zero according
to the documentation of the g_source_get_id() function.
Taken care of this at all places.
Hopefully it fixes the recent crashes of cups-browsed: LP: #1435287,
LP: #1436733, LP: #1436684, LP: #1431041, LP: #1434321

Author: Till Kamppeter
Revision Date: 2015-04-09 22:40:03 UTC

debian/patches/cups-browsed-fix-numeric-ids-of-gsources.patch:
cups-browsed: Numeric IDs for GSources of the glib event
loop must be positive integers greater than zero according
to the documentation of the g_source_get_id() function.
Taken care of this at all places.
Hopefully it fixes the recent crashes of cups-browsed: LP: #1435287,
LP: #1436733, LP: #1436684, LP: #1431041, LP: #1434321

Author: Marc Deslauriers
Revision Date: 2015-03-13 07:32:46 UTC

* SECURITY UPDATE: arbitrary code injection via incorrect filtering
  - debian/patches/CVE-2015-2265.patch: properly handle multiple
    consecutive bad chars in utils/cups-browsed.c.
  - CVE-2015-2265

Author: Marc Deslauriers
Revision Date: 2015-03-13 07:32:46 UTC

* SECURITY UPDATE: arbitrary code injection via incorrect filtering
  - debian/patches/CVE-2015-2265.patch: properly handle multiple
    consecutive bad chars in utils/cups-browsed.c.
  - CVE-2015-2265

Author: Marc Deslauriers
Revision Date: 2015-03-13 07:42:48 UTC

* SECURITY UPDATE: arbitrary code injection via incorrect filtering
  - debian/patches/CVE-2015-2265.patch: properly handle multiple
    consecutive bad chars in utils/cups-browsed.c.
  - CVE-2015-2265
* This package does _not_ contain the changes from 1.0.52-0ubuntu1.3 in
  trusty-proposed.

Author: Marc Deslauriers
Revision Date: 2015-03-13 07:42:48 UTC

* SECURITY UPDATE: arbitrary code injection via incorrect filtering
  - debian/patches/CVE-2015-2265.patch: properly handle multiple
    consecutive bad chars in utils/cups-browsed.c.
  - CVE-2015-2265
* This package does _not_ contain the changes from 1.0.52-0ubuntu1.3 in
  trusty-proposed.

Author: Till Kamppeter
Revision Date: 2014-10-27 16:21:06 UTC

* Added full support for the IPP Everywhere standard for driverless
  printing (LP: #1386241):
  - Added ippusbxd (Support for IPP-over-USB printers) generating the
    new binary package cups-filters-ippusbxd.
  - Added rastertopdf filter. This filter allows PWG Raster as input
    format for a CUPS queue. This is needed to make shared CUPS printers
    fully emulating IPP Everywhere printers (all other requirements are
    fulfilled by CUPS itself).
  - rastertopdf-mime-convs.patch: Added conversion rule for rastertopdf
    filter.
  - add-ipp-everywhere-ppd.patch: Added PPD file for a generic IPP
    Everywhere printer (on-the-fly generation via cupsfilters.drv).
  - support-for-pwgraster-output-with-ppd.patch: Support for PWG-Raster
    output selected via keyword in the PPD file.
  - pdftoraster-cspace-18-19-20.patch: pdftoraster: Support for output
    in the color spaces 18 (CUPS_CSPACE_SW, sGray), 19 (CUPS_CSPACE_SRGB,
    sRGB), and 20 (CUPS_CSPACE_ADOBERGB, Adobe RGB). No color management
    appropriate to these color spaces is added yet.

Author: Jamie Strandboge
Revision Date: 2014-10-16 06:34:18 UTC

debian/apparmor/usr.sbin.cups-browsed: allow read on /etc/cups/lpoptions
(LP: #1379368)

Author: Jamie Strandboge
Revision Date: 2014-10-16 06:34:18 UTC

debian/apparmor/usr.sbin.cups-browsed: allow read on /etc/cups/lpoptions
(LP: #1379368)

Author: Till Kamppeter
Revision Date: 2014-04-07 22:07:06 UTC

* New upstream bug fix release
   - texttopdf: Make sure that margin changes for prettyprint
     get applied.
   - texttopdf, imagetopdf, imagetoraster: Range-check paper
     dimensions and margins taken from the PPD file and correct
     them if needed (Bug #1195).

Author: Marc Deslauriers
Revision Date: 2014-03-11 10:52:15 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in urftopdf
  - debian/patches/CVE-2013-647x.patch: check sizes in
    filter/urftopdf.cpp.
  - CVE-2013-6473
* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    filter/pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    filter/pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Marc Deslauriers
Revision Date: 2014-03-11 10:52:15 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in urftopdf
  - debian/patches/CVE-2013-647x.patch: check sizes in
    filter/urftopdf.cpp.
  - CVE-2013-6473
* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    filter/pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    filter/pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:01:42 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    filter/pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    filter/pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:05:12 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:05:12 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:01:42 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    filter/pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    filter/pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

Author: Till Kamppeter
Revision Date: 2013-10-10 12:04:57 UTC

* New upstream bug fix release 1.0.40:
   - pdftops: Introduced new "hybrid" renderer: Here usually
     Ghostscript is used, but if the printer is a Brother,
     Minolta, or Konica Minolta Poppler's pdftops gets used. This
     is a quirk rule to work around bugs in the PS interpreters
     of the printers (LP: #1097105, LP: #1053443, LP: #1205898, LP: #238129,
     LP: #1072915, LP: #293832).
   - Fixed format string issues and added __attribute__ wording
     to printf-like functions to catch any regressions. Thanks to
     Tim Waugh from Red Hat for the patch.
   - pdftops: Fix for landscape PDF handling. Do not use the
     command line options "-origpagesizes" and
     "-choosePaperByPDFPageSize" of Poppler's pdftops utility on
     already processed PDF data. Thanks to Tim Waugh from Red Hat
     for the patch.
   - cups-browsed: Improve the efficiency of BrowsePoll by using
     IPP notifications when possible. It falls back to the
     previous behaviour if it is not possible to use this
     optimization. Thanks to Tim Waugh from Red Hat for the patch.
* pdftops-only-use-origpagesizes-on-unprocessed-PDFs.patch: Removed patch
  backported from upstream.
* debian/rules: Added ./configure option "--with-pdftops=hybrid" to activate
  the hybrid rendering mode (LP: #1097105, LP: #1053443, LP: #1205898,
  LP: #238129, LP: #1072915, LP: #293832).

Author: Till Kamppeter
Revision Date: 2013-10-10 12:04:57 UTC

* New upstream bug fix release 1.0.40:
   - pdftops: Introduced new "hybrid" renderer: Here usually
     Ghostscript is used, but if the printer is a Brother,
     Minolta, or Konica Minolta Poppler's pdftops gets used. This
     is a quirk rule to work around bugs in the PS interpreters
     of the printers (LP: #1097105, LP: #1053443, LP: #1205898, LP: #238129,
     LP: #1072915, LP: #293832).
   - Fixed format string issues and added __attribute__ wording
     to printf-like functions to catch any regressions. Thanks to
     Tim Waugh from Red Hat for the patch.
   - pdftops: Fix for landscape PDF handling. Do not use the
     command line options "-origpagesizes" and
     "-choosePaperByPDFPageSize" of Poppler's pdftops utility on
     already processed PDF data. Thanks to Tim Waugh from Red Hat
     for the patch.
   - cups-browsed: Improve the efficiency of BrowsePoll by using
     IPP notifications when possible. It falls back to the
     previous behaviour if it is not possible to use this
     optimization. Thanks to Tim Waugh from Red Hat for the patch.
* pdftops-only-use-origpagesizes-on-unprocessed-PDFs.patch: Removed patch
  backported from upstream.
* debian/rules: Added ./configure option "--with-pdftops=hybrid" to activate
  the hybrid rendering mode (LP: #1097105, LP: #1053443, LP: #1205898,
  LP: #238129, LP: #1072915, LP: #293832).

Author: Till Kamppeter
Revision Date: 2013-04-30 16:05:06 UTC

debian/local/cups-browsed.upstart: Give up starting cups-browsed after
3 failed attempts in 4 minutes. This avoids infinite respawning when
avahi-daemon is not running (LP: #1098756).

Author: Till Kamppeter
Revision Date: 2013-04-30 16:05:06 UTC

debian/local/cups-browsed.upstart: Give up starting cups-browsed after
3 failed attempts in 4 minutes. This avoids infinite respawning when
avahi-daemon is not running (LP: #1098756).

Author: Till Kamppeter
Revision Date: 2013-04-10 19:53:06 UTC

* New upstream bug fix release
   - pdftopdf: Fixed duplex printing logic. Before when printing
     duplex jobs with multiple copies and a odd number of pages,
     the first page of the second copy got onto the back side of
     the last page of the first copy, rendering printing more than
     one copy unusable.
   - cups-browsed: If a queue left over from the last session
     gets confirmed, fill in the data structure with the Bonjour
     parameters, also update the Bonjour parameters if a local
     queue is upgraded from IPP to IPPS.

Author: Till Kamppeter
Revision Date: 2012-11-29 16:59:59 UTC

* debian/patches/pdftopdf-landscape-fix.patch: Auto-rotate functionality
  added to pdftopdf to print landscape-formatted PDFs (for example from
  LibreOffice) correctly (LP: #1040037, Upstream bug #1080).
* debian/patches/pdftopdf-multiple-copies-collate-fix.patch: The pdftopdf
  filter started the second copy of a duplex job with an odd number of
  pages on the back side of the last page of the first copy. Thanks to
  David Williams from Ricoh for reporting this and to Tobias Hoffmann for
  fixing this (LP: #1084534).
* debian/rules: Added "DEB_DH_FIXPERMS_ARGS := -Xusr/lib/cups/backend" to not
  correct the permissions of CUPS backends (LP: #1076786).

Author: Till Kamppeter
Revision Date: 2012-09-25 06:15:07 UTC

debian/patches/texttopdf-fix-deficient-string-escaping.patch: Fixed
unsufficient string escaping in texttopdf (Upstream bug #1071).

Author: Till Kamppeter
Revision Date: 2012-05-16 11:25:03 UTC

[ Till Kamppeter ]
* New upstream release
   - pdftops: Allow selection whether Ghostscript or Poppler is used
     at runtime, setting the "pdftops-renderer" option to "gs" or
     "pdftops". This way one can switch to Poppler per-queue if there
     are incompatibilities with certain PostScript printers.
   - pdftops: Allow setting an upper limit for the image rendering
     resolution, also at runtime, setting the option
     "pdftops-max-image-resolution-default" to the desired limit in dpi.
     "0" means no limit.
   - pdftops: Fixed crash by wrong usage of sizeof() function when adding
     "Collate" to the fifth command line argument for the "pstops" CUPS
     filter call (LP: #982675).
   - pdftops: Removed newline from copies value when reading it from
     the "%%PDFTOPDFNumCopies" entry of the incoming PDF file.
   - pdftops: Silenced compiler warning about ignoring the return
     value of the write() function.
   - pdftops: Added a crash guard.
   - pdftops: Start determining the printing resolution with
     cupsRasterInterpretPPD(), this is the most reliable as often
     the choice names of the "Resolution" option are marketing names
     with higher numerical values than the actual resolution. Also
     ignore error exit values of cupsRasterInterpretPPD() as the
     function can error out after having found the resolution
     (LP: #984082).
   - pdftops: If printing resolution is determined by
     cupsRasterInterpretPPD() do not stick on 100 dpi if the
     resolution cannot be determined (LP: #984082).
* debian/rules: Set default renderer for the pdftops filter to Poppler
  due to many printer's buggy interpreters having problems with GhostScript's
  PostScript and set image rendering resolution limit of the pdftops filter
  to 360 dpi to prevents slow processing by the printer if very high
  resolutions are used or if the printing resolution is mis-detected by the
  pdftops filter (LP: #668800, LP #951627 (comment #30), LP: #998087,
  LP: #992982 (comments #26, #27, #30, #31), LP: #997728, LP: #994477,
  LP: #998087, LP: #978120, LP: #862167).

[ Didier Raboud ]
* Drop libtiff5-dev, just use libtiff-dev, this fixes the FTBFS due to
  incompatibility with cups.

Author: Till Kamppeter
Revision Date: 2012-04-20 14:39:03 UTC

* New upstream release
   - pdftopdf: Fixed segmentation fault when printing selected pages
     ("page-ranges" option, LP: #980673).