Main Inclusion Report for cups-pdf

Requirements

1. Availability: http://archive.ubuntu.com/ubuntu/pool/universe/c/cups-pdf, available for all supported architectures

2. Rationale:

   • This is a very small but useful package. It allows users to generate PDF files from every application by simply printing to the "PDF" printer.

3. Security:

   • No open issues on CVE.

   • No Secunia history.

   • CUPS backend gets started as root but drops privileges for creating the output file and calling ghostscript. Additional security by AppArmor profile of current cupsys package. This code could be much more defensive and drop privileges much earlier, but it does sanitize title etc. MartinPitt could not find an immediately visible attack.

   • Does not open any port.

4. Quality assurance:

   • Package works out of the box, requiring no configuration different to other printer drivers. Simply install the package and use the print queue generated during the package installation.
   • Package does not ask any debconf questions.

   • Active upstream.

   • No critical bugs on Launchpad, no upstream bug tracker.

5. Standards compliance:

   • Meets the FHS, Debian Policy, PPD files meet Adobe standard (test by running them through "cupstestppd" passes), and the printing requirements of LSB 3.2.

   • Standard debhelper/cdbs/dbs packaging, standard patch system.

6. Dependencies:

   • All in main.

Reviewers

MartinPitt: approved