version 3.0 for Debian Sarge
|What we provide||Caveats and shortcomings||Bug reports and contact||How to get them|
This repository provides Debian packages of teTEX 3.0 for sarge. Please read below about what we provide, and what we cannot promise
teTeX Backports moving to www.backports.org
From now on (about 2006-03-13), teTeX-3.0 backports will be uploaded to www.backports.org to achieve greater visibility. Please change your sources.listentries as described in the backports.org Instructions.
tetex-bin in testing and unstable now uses libpoppler instead of statically linking to its own copy of xpdf code. This will make security fixes much easier. Since we do not want to maintain backports of the required libraries (libpoppler and libcairo2), especially not for an upload to www.backports.org, the sarge backports still use their own copy of xpdf code.
Although our xpdf code currently contains most security fixes, this still means that those packages might not be as save as the ones in stable and unstable. On the other hand, the known issues in xpdf only cause minor problems with pdfTeX: Upon inclusion of buggy, possibly specifically manipulated PDF files, they might lead to either unfinished PDF files, or to pdfTeX crashing, or, in the worst case, to pdfTex consuming all available memory. In most use cases, this would be an annoyance, but not a security problem. On the other hand, if you are running a "pdfTeX server" that accepts arbitrary input from untrusted users, you should know what you are doing, anyway.
We hope that independent backports of libpoppler and libcairo will be provided at www.backports.org. We will then again enable libpoppler use in the teTEX backports.
Please submit bugs directly to the Debian Bugtracking System. Please keep in mind that we are primarily developing etch, the successor release of sarge, and that bug severities affect the migration into testing and inclusion of the package in the current candidate for etch. Therefore, severities of bugreports against such backports must be lowered by one or two degrees; bugs reported at release-critical severities will be downgraded promptly.
Please follow the instructions at www.backports.org/instructions.html
Last update: July 26, 2005.