Format: 1.8 Date: Mon, 28 Nov 2016 15:52:57 -0600 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: armhf Version: 9.10~dfsg-0ubuntu10.5 Distribution: trusty Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Emily Ratliff Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.10~dfsg-0ubuntu10.5) trusty-security; urgency=medium . * SECURITY UPDATE: Information disclosure through getenv, filenameforall - debian/patches/CVE-2013-5653.patch: Have filenameforall and getenv honor SAFER - CVE-2013-5653 * SECURITY UPDATE: userparams with %pipe% in paths allow remote shell exec - debian/patches/CVE-2016-7976.patch: Add a file permissions callback - CVE-2016-7976 * SECURITY UPDATE: use-after-free and remote code execution - debian/patches/CVE-2016-7978.patch: Reference count device icc profile - CVE-2016-7978 * SECURITY UPDATE: type confusion allows remote code execution - debian/patches/CVE-2016-7979.patch: DSC parser - validate parameters - CVE-2016-7979 * SECURITY UPDATE: NULL dereference - debian/patches/CVE-2016-8602.patch: check for sufficient params - CVE-2016-8602 * SECURITY UPDATE: fix SAFER permissions - debian/patches/safer.patch: Be rigorous with SAFER permissions Checksums-Sha1: 3c9ea02799358105a4347cdab32bdf9eca1c2432 40618 ghostscript_9.10~dfsg-0ubuntu10.5_armhf.deb 47abc270519cee013605bb80f172af4a7153512a 1000 ghostscript-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb 33e688241e3e68f6ba77dbe4bf23cdf9cae2d97f 30822 ghostscript-x_9.10~dfsg-0ubuntu10.5_armhf.deb bd03612f8dfe272de6f554442ac329676d3d97fb 934 ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb 140c19b6c411ad59216a0c0d887fbf36711e07ea 1676724 libgs9_9.10~dfsg-0ubuntu10.5_armhf.deb 434eec99e3bc6e7c4dfb909adfc6172c7f0b3168 966 libgs9-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb f986e95b9c5046d1fa23e1e1e097a9369a43a0a7 1929684 libgs-dev_9.10~dfsg-0ubuntu10.5_armhf.deb 08259f95aec43786127a127cd1341cbf55c487ac 982 libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb 519c4891787e9af45ddb1df6b349eb5779973398 5276968 ghostscript-dbg_9.10~dfsg-0ubuntu10.5_armhf.deb Checksums-Sha256: c8924fb72a8d69ceaf8a9b4e84c020174ba93eb84ae16ea6e9582bc60563dae0 40618 ghostscript_9.10~dfsg-0ubuntu10.5_armhf.deb d0c7bc88ea47036a9a848b19ae675599fed313a288a240fa2122f173da729a2c 1000 ghostscript-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb e44c3b834cb3cfb60151d2e378fd961e8b5f0a70ca571086017f4737e18c38de 30822 ghostscript-x_9.10~dfsg-0ubuntu10.5_armhf.deb a3c7ccec92610c320983e44eb9070f40ea8777fc961ea70fc44a74647f6e7664 934 ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb bf5165e3634b8545268b323e16003d1b074a25413a064c5faea20a9ac120cc65 1676724 libgs9_9.10~dfsg-0ubuntu10.5_armhf.deb 6829b2dbe8b3bbc112dd01490711ced7cca80e843e9bee0e7615bfbf88dfb1f6 966 libgs9-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb b25a5e1f28a3763a61e38cd2f6c6ef7b5465cc960508ee18dde07bbf2b96e1a9 1929684 libgs-dev_9.10~dfsg-0ubuntu10.5_armhf.deb 1b74d7978a80d2b9f592b5f5da20293c31232cfffc9c8374e0815c778e3be245 982 libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb bcb8374b354eebbc497da077e97a90fcacc002a900b5cc7adc83f72757237b18 5276968 ghostscript-dbg_9.10~dfsg-0ubuntu10.5_armhf.deb Files: 7c2b61d1688b9168c6f7e3ef1a29a239 40618 text optional ghostscript_9.10~dfsg-0ubuntu10.5_armhf.deb 62815bc57f28307758d8db3831a65f91 1000 text extra ghostscript-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb 55594cda18f89eca655ac0e9072c9035 30822 text optional ghostscript-x_9.10~dfsg-0ubuntu10.5_armhf.deb 49697b278bbf19329f911a48092e0669 934 text extra ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb abe5fc78a28d0653fa9b8aa62ea70c59 1676724 libs optional libgs9_9.10~dfsg-0ubuntu10.5_armhf.deb 449c6eb626efb1c1bfcff2bc3599b795 966 libs extra libgs9-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb c80c67b00ff5464bc532f78c3b0f8c91 1929684 libdevel optional libgs-dev_9.10~dfsg-0ubuntu10.5_armhf.deb 29e47f3aef7527f70bc310fc546bdad6 982 libdevel extra libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.5_armhf.ddeb 56cbf0f6b0cb91f058fb3e099e8c9440 5276968 debug extra ghostscript-dbg_9.10~dfsg-0ubuntu10.5_armhf.deb Original-Maintainer: Debian Printing Team