Attachment #48127 for bug #77408

Lines 4-9 enscript (1.6.3-1.2) stable-security; ur Link Here

(-)enscript-1.6.3.CAN-2004-1184/debian/changelog (+2 lines)
4	* Corrected handling of user supplied input (filename, title) when	4	* Corrected handling of user supplied input (filename, title) when
5	executing shell commands [src/gsint.h, src/main.c, src/util.c,	5	executing shell commands [src/gsint.h, src/main.c, src/util.c,
6	CAN-2004-1184]	6	CAN-2004-1184]
		7	* Commented out code that will permit EPS files to be provided as
		8	arbitrary programs to be executed [src/psgen.c, CAN-2004-1185]
7		9
8	--	10	--
9		11




  MESSAGE (2, (stderr, "^@epsf=\"%s\"\n", token->u.epsf.filename));

  i = strlen (token->u.epsf.filename);
  /*
  if (i > 0 && token->u.epsf.filename[i - 1] == '|')
    {
      / * Read EPS data from pipe. * /
      token->u.epsf.pipe = 1;
      token->u.epsf.filename[i - 1] = '\0';
      token->u.epsf.fp = popen (token->u.epsf.filename, "r");

	}
    }
  else
  */
    {
      char *filename;


Return to bug 77408

Lines 2385-2393 recognize_eps_file (Token *token) Link Here

(-)enscript-1.6.3.CAN-2004-1184/src/psgen.c (-1 / +3 lines)
2385	MESSAGE (2, (stderr, "^@epsf=\"%s\"\n", token->u.epsf.filename));	2385	MESSAGE (2, (stderr, "^@epsf=\"%s\"\n", token->u.epsf.filename));
2386		2386
2387	i = strlen (token->u.epsf.filename);	2387	i = strlen (token->u.epsf.filename);
		2388	/*
2388	if (i > 0 && token->u.epsf.filename[i - 1] == '\|')	2389	if (i > 0 && token->u.epsf.filename[i - 1] == '\|')
2389	{	2390	{
2390	/* Read EPS data from pipe. */	2391	/ * Read EPS data from pipe. * /
2391	token->u.epsf.pipe = 1;	2392	token->u.epsf.pipe = 1;
2392	token->u.epsf.filename[i - 1] = '\0';	2393	token->u.epsf.filename[i - 1] = '\0';
2393	token->u.epsf.fp = popen (token->u.epsf.filename, "r");	2394	token->u.epsf.fp = popen (token->u.epsf.filename, "r");
Lines 2400-2405 recognize_eps_file (Token *token) Link Here
2400	}	2401	}
2401	}	2402	}
2402	else	2403	else
		2404	*/
2403	{	2405	{
2404	char *filename;	2406	char *filename;
2405		2407