Format: 1.8 Date: Thu, 01 Dec 2016 08:57:08 -0600 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: i386 Version: 9.19~dfsg+1-0ubuntu6.2 Distribution: yakkety Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Emily Ratliff Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.19~dfsg+1-0ubuntu6.2) yakkety-security; urgency=medium . * SECURITY UPDATE: Information disclosure through getenv, filenameforall - debian/patches/CVE-2013-5653.patch: Have filenameforall and getenv honor SAFER - CVE-2013-5653 * SECURITY UPDATE: userparams with %pipe% in paths allow remote shell exec - debian/patches/CVE-2016-7976.patch: Add a file permissions callback - CVE-2016-7976 * SECURITY UPDATE: use-after-free and remote code execution - debian/patches/CVE-2016-7978.patch: Reference count device icc profile - CVE-2016-7978 * SECURITY UPDATE: type confusion allows remote code execution - debian/patches/CVE-2016-7979.patch: DSC parser - validate parameters - CVE-2016-7979 * SECURITY UPDATE: NULL dereference - debian/patches/CVE-2016-8602.patch: check for sufficient params - CVE-2016-8602 * SECURITY UPDATE: fix SAFER permissions - debian/patches/CVE-2016-7977.patch: Be rigorous with SAFER permissions - CVE-2016-7977 Checksums-Sha1: f4c5cb3c364ed164ce6d6f404a8a9f94b399173d 11079396 ghostscript-dbg_9.19~dfsg+1-0ubuntu6.2_i386.deb 53fb72d7e9b6506133c0a0e83ee30b3dcf3a5b8d 1000 ghostscript-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb d945bc8ee31b30ab65298cd85c16e370c3203067 934 ghostscript-x-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb e6ef3ac15806f84202bfc9a0854c9cb9ea0378d4 44846 ghostscript-x_9.19~dfsg+1-0ubuntu6.2_i386.deb 716781bc5caa2d8cc7c83569dbb4b5ecc256ef5f 50136 ghostscript_9.19~dfsg+1-0ubuntu6.2_i386.deb c8f18ae2f81e445d74ff2d884e2ad0a61e4729e8 994 libgs-dev-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb 91c498bcd7e10df0040d26a94f97e08810c8c47f 2562806 libgs-dev_9.19~dfsg+1-0ubuntu6.2_i386.deb 18384f24c99afa85d30643445be3098d69ef3b80 976 libgs9-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb 8ebbfb3d433debb01b13573e73c5d75820dc539e 2196902 libgs9_9.19~dfsg+1-0ubuntu6.2_i386.deb Checksums-Sha256: 918dc442bb0a4b3539b161d6207c8142477949a680990bd71e8891e31dfe95ca 11079396 ghostscript-dbg_9.19~dfsg+1-0ubuntu6.2_i386.deb 65b363c2a4ea586c619603a0d3a22a266392f023059d0d3b2d122b47cac211a3 1000 ghostscript-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb ed18adfae9b9d49ceef0eebdd63895da37496bed5e6d9802eadc6552deb004e0 934 ghostscript-x-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb c8a6c9f55554ef343c77c9eca7abffa5c29ae2c2b1ea7792ab2d13d777f1212d 44846 ghostscript-x_9.19~dfsg+1-0ubuntu6.2_i386.deb 7c433a90a4e52f1b27183173ebe58ef18734541479db502dab3768ac51f948ba 50136 ghostscript_9.19~dfsg+1-0ubuntu6.2_i386.deb f7c20ac81cabf406371361927f165d630bdbd95fe93265ca5521dd3ece8abbb7 994 libgs-dev-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb 2bb1829ae1026e45eddea3753af02c5fbea004aceefb41bc07997bf735f8f159 2562806 libgs-dev_9.19~dfsg+1-0ubuntu6.2_i386.deb 39f53fa44117a1a4855c995a09672ddc52f7d8988b8218cd42f9d68c5a988f98 976 libgs9-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb 264f764491099c1f35eedc23fd6af86120332e4e178a8fbcef1d275600630665 2196902 libgs9_9.19~dfsg+1-0ubuntu6.2_i386.deb Files: 363fefd60dcb7cc872929be5e2fd6d01 11079396 debug extra ghostscript-dbg_9.19~dfsg+1-0ubuntu6.2_i386.deb bc0f4e82b390a8ad92dff709478b2ce4 1000 text extra ghostscript-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb f49feab0088aba91e4c9e0c9055ca53b 934 text extra ghostscript-x-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb 7d6b6a8e2bb81155d9903436cd090531 44846 text optional ghostscript-x_9.19~dfsg+1-0ubuntu6.2_i386.deb 3948fa545d08626e89c206c161a84b7a 50136 text optional ghostscript_9.19~dfsg+1-0ubuntu6.2_i386.deb 5f7ff8e33fb4ea803e65eddfa7533dab 994 libdevel extra libgs-dev-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb 85629da9d0cb549bb278d9fb7cd65c56 2562806 libdevel optional libgs-dev_9.19~dfsg+1-0ubuntu6.2_i386.deb 7a67dc850028f9da4e7f3fc2fd88fef0 976 libs extra libgs9-dbgsym_9.19~dfsg+1-0ubuntu6.2_i386.ddeb e0bb48ea55306ee88e508809c2b1a695 2196902 libs optional libgs9_9.19~dfsg+1-0ubuntu6.2_i386.deb Original-Maintainer: Debian Printing Team