Package: python-reportlab / 3.3.0-2+deb9u1

Metadata

Package Version Patches format
python-reportlab 3.3.0-2+deb9u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
gsfonts.diff | (download)

src/reportlab/pdfbase/_fontdata.py | 69 16 + 53 - 0 !
1 file changed, 16 insertions(+), 53 deletions(-)

 
---
reproducible build.patch | (download)

docs/userguide/ch1_intro.py | 1 0 + 1 - 0 !
src/reportlab/pdfbase/pdfdoc.py | 15 6 + 9 - 0 !
2 files changed, 6 insertions(+), 10 deletions(-)

 
 enable reproducible building
 - Remove timestamp from documentation
 - When generating PDF files, honour SOURCE_DATE_EPOCH for timestamps in
   metadata: https://reproducible-builds.org/specs/source-date-epoch/
 - Interpret timestamps in generated PDF files as UTC.
CVE 2019 17626.patch | (download)

src/reportlab/lib/colors.py | 53 49 + 4 - 0 !
1 file changed, 49 insertions(+), 4 deletions(-)

 
 fix cve-2019-17626: remote code execution in colors.py
 Parse input string of toColor.__call__ for color classes
 .
 It constructs respective object from the string then.
 This currently supports CMYKColor, PCMYKColor, CMYKColorSep
 and PCMYKColorSep.