Format: 1.8 Date: Thu, 27 Apr 2017 19:05:47 -0700 Source: ghostscript Binary: ghostscript gs-common ghostscript-cups ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: all i386 Version: 9.05~dfsg-0ubuntu4.5 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Steve Beattie Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-cups - interpreter for the PostScript language and for PDF - CUPS filter ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support gs-common - Transitional dummy package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.05~dfsg-0ubuntu4.5) precise-security; urgency=medium . * SECURITY UPDATE: invalid handling of parameters to .eqproc and .rsdparams allowed disabling -dSAFER and thus code execution - debian/patches/CVE-2017-8291-1.patch: check .eqproc parameters - debian/patches/CVE-2017-8291-2.patch: check .rsdparams parameters - CVE-2017-8291 * SECURITY UPDATE: use-after-free in color management module. - CVE-2016-10217.patch: Don't create new ctx when pdf14 device reenabled - CVE-2016-10217 * SECURITY UPDATE: divide-by-zero error denial of service in base/gxfill.c - CVE-2016-10219.patch: check for 0 in denominator - CVE-2016-10219 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2016-10220.patch: initialize device data structure correctly - CVE-2016-10220 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-5951.patch: use the correct param list enumerator - CVE-2017-5951 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-7207.patch: ensure a device has raster memory, before trying to read it - CVE-2017-7207 Checksums-Sha1: ddd4e8e3eb9c079a1400d9f0006f9ed5241d16ec 13964 gs-common_9.05~dfsg-0ubuntu4.5_all.deb dde2d2fb67bd0fd6770b36d1dbdf496966b3a815 3658284 ghostscript-doc_9.05~dfsg-0ubuntu4.5_all.deb a6151a316badded706af7a25ad0905d1165fddda 3942178 libgs9-common_9.05~dfsg-0ubuntu4.5_all.deb 11a46b02257e87a614bf17ae9f33dd3f6ba768ca 43910 ghostscript_9.05~dfsg-0ubuntu4.5_i386.deb eb3b9d6174cf5f6fb77b309dfd8d4c00d951d99f 4000 ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb 42c6cee9109c8fef73f9c08547322d5ef02e7611 24216 ghostscript-cups_9.05~dfsg-0ubuntu4.5_i386.deb 94ae9ac1f0307eddfa2f1465e55a5069e6f45631 18170 ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb 1e6a98ae4c86e74dd1a972db8e32cd852387dcc3 39306 ghostscript-x_9.05~dfsg-0ubuntu4.5_i386.deb f1850efffe8a7d90106e9036f7b57a864184efb5 68182 ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb a1e268d8fa78788b8746b75129ed35b2ee9fa9bd 2257146 libgs9_9.05~dfsg-0ubuntu4.5_i386.deb e7afbea0a357d7dd45282aafe01d0dd85e0d482f 4110000 libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb 022f4d4d3f9e706a8db5c3ddbd8445c279bd9d97 2887480 libgs-dev_9.05~dfsg-0ubuntu4.5_i386.deb bcf40c11e13591397d69c5a63d431e8ad2d425ec 8340422 ghostscript-dbg_9.05~dfsg-0ubuntu4.5_i386.deb Checksums-Sha256: b87e64677d615da9521f0add1cb9c7e1f4306e13c1aed8a0a590e1da365ee8f3 13964 gs-common_9.05~dfsg-0ubuntu4.5_all.deb 9305e4534f3868df8c13973228e0187730f68cf8a9dfd6e0113a2a980ea9e893 3658284 ghostscript-doc_9.05~dfsg-0ubuntu4.5_all.deb 8b1454b85d8c82508e5451fb8520f7639e2fd14172516c6019a42cb862df1bda 3942178 libgs9-common_9.05~dfsg-0ubuntu4.5_all.deb 898a2824f39ccc564a0312e89907c94930930a25a9b373981b70f4e02df14dfd 43910 ghostscript_9.05~dfsg-0ubuntu4.5_i386.deb 5c5ea2407a779216798710b156e9290aa9bb96cfead8bc232593ba5688a43c02 4000 ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb ccca6d2261ce15b49b430a0bfee00663bd10bdb37b5e52057110035f72ff327b 24216 ghostscript-cups_9.05~dfsg-0ubuntu4.5_i386.deb 10b698d5fe9e27f91f4610368ca16b3baa4a9e65e293ba5e6b95b48f3cbb5d15 18170 ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb 9ad9a6c8df7ce60a91800fb4b38527b9f6e995aae2f091def93facd713e4c6d4 39306 ghostscript-x_9.05~dfsg-0ubuntu4.5_i386.deb c94f772eff05c922f2489af499c19fec730b589926344352fea4be8fa8646d18 68182 ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb d0b3c78819406d685dc381f127c105ac75fa01c8b3b5f79b973ca7fdad8bf878 2257146 libgs9_9.05~dfsg-0ubuntu4.5_i386.deb 7936142f9d27d6800134721e45dd4a2a6ab88d8eb8e013dc34b99eb05ff1c0cc 4110000 libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb ebea26313b9e1e4c085f9f31f57f01bc583cd1bf9abb5963a21b5bb348574e45 2887480 libgs-dev_9.05~dfsg-0ubuntu4.5_i386.deb 242126138789cf54363e4d9eece1497b60f51b1fa8f21545d8b81afcde3bec88 8340422 ghostscript-dbg_9.05~dfsg-0ubuntu4.5_i386.deb Files: 6db99930f646ee0b66c8022c3b6cad7a 13964 text extra gs-common_9.05~dfsg-0ubuntu4.5_all.deb d59da5f21248e38dee38202615fa016e 3658284 doc optional ghostscript-doc_9.05~dfsg-0ubuntu4.5_all.deb f9422f8031184666cc26e3474065c74b 3942178 libs optional libgs9-common_9.05~dfsg-0ubuntu4.5_all.deb e417ef389de6745773ff33c4adb1bc10 43910 text optional ghostscript_9.05~dfsg-0ubuntu4.5_i386.deb 720d0c120e5fa0f71651186d54dbcb29 4000 text extra ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb ec0f71e36a803060c6a5323990f34d72 24216 text optional ghostscript-cups_9.05~dfsg-0ubuntu4.5_i386.deb 090af7cf3ac990e90033e2ea4545cdfd 18170 text extra ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb d6d7e81a4a9de30804ff01a22f1b867a 39306 text optional ghostscript-x_9.05~dfsg-0ubuntu4.5_i386.deb a90d8739f95f2d8a8f40af47bb302c04 68182 text extra ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb bf2e1ea19af365383b94ff5c4df13d2a 2257146 libs optional libgs9_9.05~dfsg-0ubuntu4.5_i386.deb 8f3814ac4335bf3e0215defeec7dba5b 4110000 libs extra libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_i386.ddeb 6a468604cb588f1224fd0ceffc0659d1 2887480 libdevel optional libgs-dev_9.05~dfsg-0ubuntu4.5_i386.deb 2d14a6631521920cb4be44792d57409b 8340422 debug extra ghostscript-dbg_9.05~dfsg-0ubuntu4.5_i386.deb Original-Maintainer: Debian Printing Team