Format: 1.8 Date: Thu, 27 Apr 2017 19:05:47 -0700 Source: ghostscript Binary: ghostscript gs-common ghostscript-cups ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: armel Version: 9.05~dfsg-0ubuntu4.5 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Steve Beattie Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-cups - interpreter for the PostScript language and for PDF - CUPS filter ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support gs-common - Transitional dummy package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.05~dfsg-0ubuntu4.5) precise-security; urgency=medium . * SECURITY UPDATE: invalid handling of parameters to .eqproc and .rsdparams allowed disabling -dSAFER and thus code execution - debian/patches/CVE-2017-8291-1.patch: check .eqproc parameters - debian/patches/CVE-2017-8291-2.patch: check .rsdparams parameters - CVE-2017-8291 * SECURITY UPDATE: use-after-free in color management module. - CVE-2016-10217.patch: Don't create new ctx when pdf14 device reenabled - CVE-2016-10217 * SECURITY UPDATE: divide-by-zero error denial of service in base/gxfill.c - CVE-2016-10219.patch: check for 0 in denominator - CVE-2016-10219 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2016-10220.patch: initialize device data structure correctly - CVE-2016-10220 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-5951.patch: use the correct param list enumerator - CVE-2017-5951 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-7207.patch: ensure a device has raster memory, before trying to read it - CVE-2017-7207 Checksums-Sha1: 413765894c1f73a8b92a4fcbbc82d5afef43f230 44318 ghostscript_9.05~dfsg-0ubuntu4.5_armel.deb 89f2e288631f60626707d7db4d991611e9b391ad 4290 ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 6908f4f25d283bd1756f8d58e14ae8153f7af844 24512 ghostscript-cups_9.05~dfsg-0ubuntu4.5_armel.deb a7aed33a38d84a9e52f7356c2e7675a34378b94a 17984 ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb a85ba83f4ff4895abd29174ee5b363549397af2b 35404 ghostscript-x_9.05~dfsg-0ubuntu4.5_armel.deb d531305c85d186886a91cb85724dea3382d7a290 68612 ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 497494fcb2de737476ba3993ac74775f0906e4c2 1864138 libgs9_9.05~dfsg-0ubuntu4.5_armel.deb a40d0d4b48e2059d1ad570d59aa5382e1517119f 4072630 libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 2503e2989a7048227b0fe63a560e6e3571e2768f 2420868 libgs-dev_9.05~dfsg-0ubuntu4.5_armel.deb 1d53dc1fe87d9c3207a7d35f5e878b7a65623977 8336898 ghostscript-dbg_9.05~dfsg-0ubuntu4.5_armel.deb Checksums-Sha256: d7b5a39804706dfcc5e16ae783ed24b69c55cf66a1467b338122da0b38b540dd 44318 ghostscript_9.05~dfsg-0ubuntu4.5_armel.deb 62a036663a7f640c9b52b2dba35c41ff15e13bebb631681fcf8fdb0c3996c774 4290 ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 517cd890077bb6000269e8d353bd34d59b2d24d7f09248f716be8926b44d8637 24512 ghostscript-cups_9.05~dfsg-0ubuntu4.5_armel.deb 28a614bc7dd58dd36aebc494e75a392b914af149baa22aa02921d81da0340211 17984 ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb ca2904ae20470109aead1c93f160a164386bfff27dfe1207f3767386c56756a7 35404 ghostscript-x_9.05~dfsg-0ubuntu4.5_armel.deb a9a2df4e53513dbb4f34b31f67ee0085f1a2080ec6955528bb2e77324963381b 68612 ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb f21d6c95259bd04370d3f4dd498bbdec3fdb49f65aa9626c42ac82d0e19ade76 1864138 libgs9_9.05~dfsg-0ubuntu4.5_armel.deb f1aecf9c3b1872341a381d54c07baf6ab42356ab05a4268104ef30400e36ce50 4072630 libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 18267f248660ec9da5a8923c7f95040acf47784d856e7fc69158b7f7fede4921 2420868 libgs-dev_9.05~dfsg-0ubuntu4.5_armel.deb 17977fec83c4b2e48bf611e79758c8783ba374bda6a07af8c46c8f6fcf2a3756 8336898 ghostscript-dbg_9.05~dfsg-0ubuntu4.5_armel.deb Files: daceffb2f069a8b7bc42d3c9f575c91d 44318 text optional ghostscript_9.05~dfsg-0ubuntu4.5_armel.deb 0c65347ddf17a7546375b785d0c387b6 4290 text extra ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 22ea2f8d8b6baea922304983d11c84c5 24512 text optional ghostscript-cups_9.05~dfsg-0ubuntu4.5_armel.deb 12ddeebff429a04924f2a15261392c12 17984 text extra ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb c32d7465adc1fbb21660e3ef3cc60585 35404 text optional ghostscript-x_9.05~dfsg-0ubuntu4.5_armel.deb e5541203c5a1f04a733c01fdb6a3c60e 68612 text extra ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 490629b49488647f620cea74a53f50d6 1864138 libs optional libgs9_9.05~dfsg-0ubuntu4.5_armel.deb b14fca7adab03b1ff9a75167cc64a71a 4072630 libs extra libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_armel.ddeb 2f7b336647967db5bb2d3c0004d1e54c 2420868 libdevel optional libgs-dev_9.05~dfsg-0ubuntu4.5_armel.deb 77ca3ab41dbf06e6e5cb6be704dc1dd7 8336898 debug extra ghostscript-dbg_9.05~dfsg-0ubuntu4.5_armel.deb Original-Maintainer: Debian Printing Team