Re: Please test new tetex packages for woody
From: Adrian Bunk <bunk@fs.tum.de>
Subject: Please test new tetex packages for woody
Date: Sun, 25 Jun 2000 02:40:04 +0200 (CEST)
> I have prepared new tetex-base and tetex-bin packages for woody. The most
Thanks for your efforts, Adrian. I only look through them roughly
yet but noticed several problems.
> tetex-base (1.0.2-2) unstable; urgency=high
You should remove txi-{cs,de,no}.tex which are duplicated with
texinfo package. This is Bug#65825 which you, Adrian, reported :)
I am not sure but it might be better to include
doc/latex/koma-script/README, doc/latex/seminar/sem-read.me
as, for example, copyright.koma-script, copyright.seminar
because there are contradicting statements in other files.
It might also be better to include "stmaryrd.dtx" which
you can find in teTeX-texmfsrc-1.0.1.tar.gz of CTAN site.
I pointed this already in
From: Atsuhito Kohda <kohda@nsx.pm.tokushima-u.ac.jp>
Subject: Bug#65961: tetex-base/tetex-nonfree: serious license problems
Date: Fri, 23 Jun 2000 08:42:36 +0900
> however, AFAIK, stmaryrd.dtx is not included in any tetex-* packages.
> It is included in the original teTeX-texmfsrc.
And at last but not at least, I think it is important
to fix
From: Julian Gilbey <J.D.Gilbey@qmw.ac.uk>
Subject: Bug#65961: tetex-base/tetex-nonfree: serious license problems
Date: Wed, 21 Jun 2000 17:16:18 +0100
but not only you but almost all staffs here seem to neglect(?)
this issue. I am very glad if you test the script
and make tetex-base clean!
From: Atsuhito Kohda <kohda@nsx.pm.tokushima-u.ac.jp>
Subject: Bug#65961: tetex-base/tetex-nonfree: serious license problems
Date: Sat, 24 Jun 2000 09:19:32 +0900
--------------------------------------
#!/bin/sh
set -x
if [ $# -eq 0 ] ; then
NONFREE=../tetex-nonfree-1.0.2
elif [ X$1 = X-orig ] ; then
NONFREE=/tmp
else
echo "Wrong usage!"
exit 1
fi
## nehyph[1,2] and textmerg
mkdir -p $NONFREE/texmf/tex/latex
mkdir -p $NONFREE/texmf/tex/generic/hyphen
mkdir -p $NONFREE/texmf/doc/latex
mv texmf/tex/generic/hyphen/nehyph{1,2}.tex $NONFREE/texmf/tex/generic/hyphen/
mv texmf/tex/latex/textmerg $NONFREE/texmf/tex/latex
mv texmf/doc/latex/textmerg $NONFREE/texmf/doc/latex
--------------------------------------
And also about this
> tetex-bin (1.0.7-2) unstable; urgency=high
there is a security issue and I sent the following patch
a long time ago. This is for 1.0.6 but it works well with
1.0.7 like
nsx:~/temp/tetex-debian/tetex-bin-1.0.7$ patch -p1 < ../patch
patching file `texk/dvipsk/dvips.1'
patching file `texk/dvipsk/dvips.c'
patching file `texk/dvipsk/dvips.help'
patching file `texk/dvipsk/dvips.texi'
This means also that the security problem is not fixed in 1.0.7
yet.
From: Atsuhito Kohda <kohda@pm.tokushima-u.ac.jp>
Subject: Bug#51586: Please Reopen 51586 ("secure" mode in dvips should be the default)
Date: Mon, 22 May 2000 08:14:05 +0900
--- tetex-bin-1.0.6.orig/texk/dvipsk/dvips.1
+++ tetex-bin-1.0.6/texk/dvipsk/dvips.1
@@ -174,6 +174,17 @@
before running out of steam; these options can be used to automatically
split a book into ten-page sections, each to its own file.
.TP
+.B -I
+Run in insecure mode. This means that ``backtick'' commands from a
+.I \\\special{}
+or
+.I \epsffile{}
+macro in the (La)TeX source like
+.I \\\special{psfile="`zcat foo.ps.Z"}
+or
+.I \epsffile[72 72 540 720]{"`zcat screendump.ps.gz"}
+are executed.
+.TP
.B -k
Print crop marks. This option increases the paper size (which should be
specified, either with a paper size special or with the
--- tetex-bin-1.0.6.orig/texk/dvipsk/dvips.c
+++ tetex-bin-1.0.6/texk/dvipsk/dvips.c
@@ -64,7 +64,7 @@
Boolean cropmarks ; /* add cropmarks? */
Boolean abspage = 0 ; /* are page numbers absolute? */
Boolean tryepsf = 0 ; /* should we try to make it espf? */
-Boolean secure = 0 ; /* make safe for suid */
+Boolean secure = 1 ; /* make safe for suid */
int collatedcopies = 1 ; /* how many collated copies? */
int sectioncopies = 1 ; /* how many times to repeat each section? */
integer pagecopies = 1 ; /* how many times to repeat each page? */
@@ -267,7 +267,7 @@
" G* Shift low chars to higher pos. ",
#endif
"h f Add header file ",
-"i* Separate file per section ",
+"i* Separate file per section I Run insecurely ",
"j* Download fonts partially ",
"k* Print crop marks K* Pull comments from inclusions ",
"l # Last page ",
@@ -732,6 +732,9 @@
if (sepfiles && maxsecsize == 0) {
maxsecsize = 1; /* default section size to one page/file */
}
+ break ;
+case 'I':
+ secure = 0 ;
break ;
case 'j':
partialdownload = (*p != '0') ;
--- tetex-bin-1.0.6.orig/texk/dvipsk/dvips.help
+++ tetex-bin-1.0.6/texk/dvipsk/dvips.help
@@ -8,7 +8,7 @@
e # Maxdrift value E* Create minimal EPSF
f* Run as filter F* Send control-D at end
h f Add header file f H f Same as h
-i* Separate file per section
+i* Separate file per section I Run insecurely
j* Partially download Type 1's
k* Print crop marks K* Pull comments from inclusions
l # Last page
--- tetex-bin-1.0.6.orig/texk/dvipsk/dvips.texi
+++ tetex-bin-1.0.6/texk/dvipsk/dvips.texi
@@ -802,6 +802,17 @@
before running out of steam; these options can be used to automatically
split a book into ten-page sections, each to its own file.
+@item -I
+@opindex -I
+@cindex security
+@cindex shell command execution, enabling
+@cindex absolute filenames, enabling
+@cindex pipes, enabling output to
+Run insecurely. This enables shell command execution in @code{\special}
+(via @samp{`}, @pxref{Dynamic creation of graphics}) and config files
+(via the @samp{E} option, @pxref{Configuration file commands}), pipes as
+output files, and opening of any absolute filenames.
+
@item -j*
@opindex -j @r{for partial font downloading}
Download only needed characters from Type 1 fonts. This is the
Best Regards, 2000.6.25
--
Debian JP Developer - much more I18N of Debian
Atsuhito Kohda <kohda@pm.tokushima-u.ac.jp>
Department of Math., Tokushima Univ.
Reply to: