ghostscript 9.19~dfsg+1-0ubuntu7.2 source package in Ubuntu

Changelog

ghostscript (9.19~dfsg+1-0ubuntu7.2) zesty-security; urgency=medium

  * SECURITY UPDATE: invalid handling of parameters to .eqproc and
    .rsdparams allowed disabling -dSAFER and thus code execution
    - debian/patches/CVE-2017-8291-1.patch: check .eqproc parameters
    - debian/patches/CVE-2017-8291-2.patch: check .rsdparams parameters
    - CVE-2017-8291
  * SECURITY UPDATE: use-after-free in color management module.
    - CVE-2016-10217.patch: Dont create new ctx when pdf14 device
      reenabled
    - CVE-2016-10217
  * SECURITY UPDATE: divide-by-zero error denial of service in
    base/gxfill.c
    - CVE-2016-10219.patch: check for 0 in denominator
    - CVE-2016-10219
  * SECURITY UPDATE: null pointer dereference denial of service
    - CVE-2016-10220.patch: initialize device data structure correctly
    - CVE-2016-10220
  * SECURITY UPDATE: null pointer dereference denial of service
    - CVE-2017-5951.patch: use the correct param list enumerator
    - CVE-2017-5951
  * SECURITY UPDATE: null pointer dereference denial of service
    - CVE-2017-7207.patch: ensure a device has raster memory, before
      trying to read it
    - CVE-2017-7207

 -- Steve Beattie <email address hidden>  Thu, 27 Apr 2017 16:00:11 -0700

Upload details

Uploaded by:
Steve Beattie on 2017-04-28
Uploaded to:
Zesty
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
text
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
ghostscript_9.19~dfsg+1.orig.tar.bz2 19.0 MiB 5407accbe38b2eca247807b68dfcdd33159ee324220091b3102ef9b58aa83787
ghostscript_9.19~dfsg+1-0ubuntu7.2.debian.tar.xz 108.2 KiB a715d76c3056cbebe2183ac5880ab843ec260e835a23678d4427ed4b82a058ee
ghostscript_9.19~dfsg+1-0ubuntu7.2.dsc 2.9 KiB e18d4fc6a90da083f76446847525508d59b09919f02a16233ed752278c8365fe

View changes file

Binary packages built by this source

ghostscript: No summary available for ghostscript in ubuntu zesty.

No description available for ghostscript in ubuntu zesty.

ghostscript-dbg: No summary available for ghostscript-dbg in ubuntu zesty.

No description available for ghostscript-dbg in ubuntu zesty.

ghostscript-dbgsym: No summary available for ghostscript-dbgsym in ubuntu zesty.

No description available for ghostscript-dbgsym in ubuntu zesty.

ghostscript-doc: No summary available for ghostscript-doc in ubuntu zesty.

No description available for ghostscript-doc in ubuntu zesty.

ghostscript-x: No summary available for ghostscript-x in ubuntu zesty.

No description available for ghostscript-x in ubuntu zesty.

ghostscript-x-dbgsym: No summary available for ghostscript-x-dbgsym in ubuntu zesty.

No description available for ghostscript-x-dbgsym in ubuntu zesty.

libgs-dev: No summary available for libgs-dev in ubuntu zesty.

No description available for libgs-dev in ubuntu zesty.

libgs-dev-dbgsym: No summary available for libgs-dev-dbgsym in ubuntu zesty.

No description available for libgs-dev-dbgsym in ubuntu zesty.

libgs9: No summary available for libgs9 in ubuntu zesty.

No description available for libgs9 in ubuntu zesty.

libgs9-common: No summary available for libgs9-common in ubuntu zesty.

No description available for libgs9-common in ubuntu zesty.

libgs9-dbgsym: No summary available for libgs9-dbgsym in ubuntu zesty.

No description available for libgs9-dbgsym in ubuntu zesty.