[tex-k] [rhn-admin@rhn.redhat.com: RHN Errata Alert: Command execution vulnerability in dvips]
Reinhard Kotucha
reinhard@kammer.uni-hannover.de
Tue, 5 Nov 2002 02:22:26 +0100
>>>>> "Tim" == Tim Waugh <twaugh@redhat.com> writes:
> *cough* security fixes *cough*
... with side effects.
BTW., I don't know which printing system is currently used by RedHat,
but with a simple BSD system it does not make much sense to run dvips
as user "lp". The reason is that a dvi file might contain relative
links to included graphic files. If lp gets the dvi file from the
pipe, it doesn't know where it comes from and cannot resolve the
(relative) paths to the graphics.
Did RedHat solve this problem?
Regards,
Reinhard
--
----------------------------------------------------------------------------
Reinhard Kotucha Phone: +49-511-27060390
Marschnerstr. 25
D-30167 Hannover mailto:reinhard@kammer.uni-hannover.de
----------------------------------------------------------------------------
Microsoft isn't the answer. Microsoft is the question, and the answer is NO.
----------------------------------------------------------------------------