CVSROOT: /cvs
Module name: ports
Changes by: k...@cvs.openbsd.org 2009/11/28 11:33:57
Modified files:
editors/openoffice3: Makefile
editors/openoffice3/patches: patch-xpdf_makefile_mk
Added files:
editors/openoffice3/patches:
patch-sdext_source_pdfimport_filterdet_cxx
patch-sdext_source_pdfimport_wrapper_wrapper_cxx
patch-xpdf_xpdf-3_02_patch
Log message:
Security fix: Use the xpdf version from our portstree for the pdf
importer. This basically updates the xpdf version used by the
importer from xpdf-3.02pl3 to xpdf-3.02pl4 and probably addresses
CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3606,
CVE-2009-3608, and CVE-2009-3609.
I tried to build the pdf importer with poppler, but it failed badly
on PDF files containing any graphics.
While here, disable the (snake oil) DRM "feature", like we already
do in xpdf and poppler, and pass the correct flags to the xpdf
build.
Note: the extension concept of this software is stupid^W"enterprise
ready". If you ever enabled the pdf importing extension, you will
have to disable and re-enable it to get the new extension installed
(somewhere under ~/.openoffice.org or similar).
"just fucking commit you slacker ;)" robert@
