Format: 1.8 Date: Mon, 28 Nov 2016 15:52:57 -0600 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: arm64 Version: 9.10~dfsg-0ubuntu10.5 Distribution: trusty Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Emily Ratliff Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.10~dfsg-0ubuntu10.5) trusty-security; urgency=medium . * SECURITY UPDATE: Information disclosure through getenv, filenameforall - debian/patches/CVE-2013-5653.patch: Have filenameforall and getenv honor SAFER - CVE-2013-5653 * SECURITY UPDATE: userparams with %pipe% in paths allow remote shell exec - debian/patches/CVE-2016-7976.patch: Add a file permissions callback - CVE-2016-7976 * SECURITY UPDATE: use-after-free and remote code execution - debian/patches/CVE-2016-7978.patch: Reference count device icc profile - CVE-2016-7978 * SECURITY UPDATE: type confusion allows remote code execution - debian/patches/CVE-2016-7979.patch: DSC parser - validate parameters - CVE-2016-7979 * SECURITY UPDATE: NULL dereference - debian/patches/CVE-2016-8602.patch: check for sufficient params - CVE-2016-8602 * SECURITY UPDATE: fix SAFER permissions - debian/patches/safer.patch: Be rigorous with SAFER permissions Checksums-Sha1: 5a51eef89e0d6245df1fa3aa3c5b114824b4dafd 40758 ghostscript_9.10~dfsg-0ubuntu10.5_arm64.deb 1b9b0cc4e0ecc5e8ded444f891a0066fe869128e 1000 ghostscript-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 939c3b6f3df9d6ab9003bf1a347c57f6aab92f91 29330 ghostscript-x_9.10~dfsg-0ubuntu10.5_arm64.deb 53a27fbe731109055753ad38357a8658cdb578f5 930 ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 0820e9155b207af071297b6012427cce2f783722 1626064 libgs9_9.10~dfsg-0ubuntu10.5_arm64.deb 91d5aac13eec1fc3ecf50fda5073ed4d2908519b 966 libgs9-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 1185df61c6f114ca64b019ffa3f0afbfcf5fd1b4 1912708 libgs-dev_9.10~dfsg-0ubuntu10.5_arm64.deb 74323e3941aa950a971781bb52d82961628bc55e 982 libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 69ca35d4e9bca29420e3c4666aafe746d65602c7 5438042 ghostscript-dbg_9.10~dfsg-0ubuntu10.5_arm64.deb Checksums-Sha256: a71aaad0e2b101c2957be9d57f6574f70519e42c5138cd836869af540e320f70 40758 ghostscript_9.10~dfsg-0ubuntu10.5_arm64.deb 8ec8576f480da3ab7630977d5c9cd71364332aa440a4b2043fa68a5cb6f65003 1000 ghostscript-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb a80bad633fe41b755c5e44bfa3620eb1d15467a875a1b0b8106fc4dd3ff03ff3 29330 ghostscript-x_9.10~dfsg-0ubuntu10.5_arm64.deb 83f9dddc2b554a79c83be2e7febc82ac628deffa16ffe29ef9847b586cc9116b 930 ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 42069a06d933c91bc9d036494e7af4384458ec7de1ac01ff0ba23b68d48ae798 1626064 libgs9_9.10~dfsg-0ubuntu10.5_arm64.deb 466637650c9c7a6239654bedde7ae77a802049661f8f1d4c674fa7930d3cd60c 966 libgs9-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb b8d5d1078fed43feb90784bd2cff461c9e176b01e8de24c89f8fb33636ac1db8 1912708 libgs-dev_9.10~dfsg-0ubuntu10.5_arm64.deb 96635200dca6b82352a814d15e9ce2f1b4a16dbc26cd0a8ee5db91adcf067310 982 libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb f0cea8e7c3e6b5aa5fe932ebd712c6fd852d1e9473ff9ce2034bae0a83aa6c1e 5438042 ghostscript-dbg_9.10~dfsg-0ubuntu10.5_arm64.deb Files: 6a20c5a2e5221744beaa54959f9385c3 40758 text optional ghostscript_9.10~dfsg-0ubuntu10.5_arm64.deb 0952ec58a7af9c98465172aa121c7f77 1000 text extra ghostscript-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb b5703e3cca02681c8cde4152934c314b 29330 text optional ghostscript-x_9.10~dfsg-0ubuntu10.5_arm64.deb 83a2fbbd7a363d736fc681496787c29b 930 text extra ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 37a02618ecab53eb5306a33a28661d6a 1626064 libs optional libgs9_9.10~dfsg-0ubuntu10.5_arm64.deb f39fb8e50e72ce079e037125c8ff470d 966 libs extra libgs9-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb 5fed9c0973d9889cf59ad82b4c714363 1912708 libdevel optional libgs-dev_9.10~dfsg-0ubuntu10.5_arm64.deb bce59744f78a049e3bf5b29b0c2ff511 982 libdevel extra libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.5_arm64.ddeb a8213f801a38423c1e721660b3aa37e6 5438042 debug extra ghostscript-dbg_9.10~dfsg-0ubuntu10.5_arm64.deb Original-Maintainer: Debian Printing Team