Description: CVE-2014-0466: fixps does not invoke gs with -dSAFER
 A malicious PostScript file could delete files with the privileges of
 the invoking user.
Origin: vendor
Bug-Debian: http://bugs.debian.org/742902
Author: Salvatore Bonaccorso <carnil@debian.org>
Last-Update: 2014-03-28

--- a/contrib/fixps.in
+++ b/contrib/fixps.in
@@ -389,7 +389,7 @@
   	eval "$command" ;;
       gs)
         $verbose "$program: making a full rewrite of the file ($gs)." >&2
-  	$gs -q -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
+  	$gs -q -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
     esac
   )
 fi
--- a/contrib/fixps.m4
+++ b/contrib/fixps.m4
@@ -307,7 +307,7 @@
   	eval "$command" ;;
       gs)
         $verbose "$program: making a full rewrite of the file ($gs)." >&2
-  	$gs -q -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
+  	$gs -q -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
     esac
   )
 fi

<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>refs</a><a class='active' href='/guix/log/gnu/services/games.scm'>log</a><a href='/guix/tree/gnu/services/games.scm?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>tree</a><a href='/guix/commit/gnu/services/games.scm?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>commit</a><a href='/guix/diff/gnu/services/games.scm?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/services/games.scm'>
<input type='hidden' name='id' value='d2b83d4799e7640bfdf98062e4d9812e6a445cb5'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>root</a>/<a href='/guix/log/gnu?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>gnu</a>/<a href='/guix/log/gnu/services?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>services</a>/<a href='/guix/log/gnu/services/games.scm?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5'>games.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/services/games.scm?id=d2b83d4799e7640bfdf98062e4d9812e6a445cb5&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2018-11-20 22:40:44 +0530'>2018-11-20</span></td><td><a href='/guix/commit/gnu/services/games.scm?id=662e2285f502b65600b0b5a12c040d050be8999d'>services: wesnothd: Run as wesnothd user and group.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/services/games.scm (wesnothd-shepherd-service): Run as wesnothd user and
group.
</span></span></td><td>Arun Isaac</td></tr>
<tr><td><span title='2018-05-14 20:15:28 +0530'>2018-05-14</span></td><td><a href='/guix/commit/gnu/services/games.scm?id=f93c7a89797667db073b1ddbb0fbbea41f16bf33'>gnu: services: Fix wesnothd-configuration? symbol export.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/services/games.scm: Export wesnothd-configuration?, not the
non-existent wesnoth-configuration?.
</span></span></td><td>Arun Isaac</td></tr>
<tr><td><span title='2018-02-09 14:55:17 +0530'>2018-02-09</span></td><td><a href='/guix/commit/gnu/services/games.scm?id=a76acfd3f5ea6cced10af5a191d057f29b87f277'>gnu: services: Add wesnothd service.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/services/games.scm: New file.
* gnu/local.mk (GNU_SYSTEM_MODULES): Add it.
* doc/guix.texi (Game Services): Document the service.
</span></span></td><td>Arun Isaac</td></tr>