Format: 1.8 Date: Thu, 27 Apr 2017 17:48:36 -0700 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: arm64 Version: 9.10~dfsg-0ubuntu10.7 Distribution: trusty Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Steve Beattie Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.10~dfsg-0ubuntu10.7) trusty-security; urgency=medium . * SECURITY UPDATE: invalid handling of parameters to .eqproc and .rsdparams allowed disabling -dSAFER and thus code execution - debian/patches/CVE-2017-8291-1.patch: check .eqproc parameters - debian/patches/CVE-2017-8291-2.patch: check .rsdparams parameters - CVE-2017-8291 * SECURITY UPDATE: use-after-free in color management module. - CVE-2016-10217.patch: Don't create new ctx when pdf14 device reenabled - CVE-2016-10217 * SECURITY UPDATE: divide-by-zero error denial of service in base/gxfill.c - CVE-2016-10219.patch: check for 0 in denominator - CVE-2016-10219 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2016-10220.patch: initialize device data structure correctly - CVE-2016-10220 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-5951.patch: use the correct param list enumerator - CVE-2017-5951 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-7207.patch: ensure a device has raster memory, before trying to read it - CVE-2017-7207 Checksums-Sha1: cd9eadcf10dcd77f5af736484352f5e3fde96bad 40824 ghostscript_9.10~dfsg-0ubuntu10.7_arm64.deb 3a4f1f324f38004f9f3ef852fe9889a12cb03c23 1000 ghostscript-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 36ccc98b463eb0a18e08e90e78783228980d48bf 29320 ghostscript-x_9.10~dfsg-0ubuntu10.7_arm64.deb f17db8c14cadcdb555d5aacfb6942a7cd261d2ac 934 ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb e6719c18026d7a7b664689c48e2f0db3c7315661 1627648 libgs9_9.10~dfsg-0ubuntu10.7_arm64.deb f7afbd33f1366b88e570979b864a56e331e7b146 966 libgs9-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 51a6ba08ea2b7429861026d661bc9818f4829362 1913930 libgs-dev_9.10~dfsg-0ubuntu10.7_arm64.deb 91a131ea75a8e9318fc621f16d29c81e471d9df2 982 libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 74724fc0084a99521986bf80a0d2c6d4756796cc 5433568 ghostscript-dbg_9.10~dfsg-0ubuntu10.7_arm64.deb Checksums-Sha256: b6a80418d8d94ef48b25297bc60904f613d55554b5a002480ac79bcaa9621309 40824 ghostscript_9.10~dfsg-0ubuntu10.7_arm64.deb 5058f61cb53d578af3ffcf2ea83cbd7fee75a3eb6727ae8a179ecf735ad94560 1000 ghostscript-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 22c20c785d31bf991c91364ce90c5c317bd38fabb6f65a08f53203de087d27f2 29320 ghostscript-x_9.10~dfsg-0ubuntu10.7_arm64.deb 00db75115e43de80566a38470a5f3cb7c7e9a0a8789b1e897efdc22963b3da61 934 ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 73d758fd4eb264c576ef77ec342dffac44cfcf6fda3be50b360f383b91cfaf25 1627648 libgs9_9.10~dfsg-0ubuntu10.7_arm64.deb 911fc7969d736dca8cd103e276c26f95c7b68dc6862ccab68231b7630ae8d263 966 libgs9-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 73d533000da8340a821d5552afab1080371f7dfca85ea68de8cfaea11713d288 1913930 libgs-dev_9.10~dfsg-0ubuntu10.7_arm64.deb 79a07db2c26f14f0dd6ad696e053c13662b54951cf24bab1544a4cd046198878 982 libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 9c759fb56bc0947c7190402491b0bdf6f740801b4b3c819ae83943e3f4466bbb 5433568 ghostscript-dbg_9.10~dfsg-0ubuntu10.7_arm64.deb Files: abea525f755c996979a06ad000733eca 40824 text optional ghostscript_9.10~dfsg-0ubuntu10.7_arm64.deb 1dccbeaa0bebf357baf4e9449708a39c 1000 text extra ghostscript-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb d1c162453c30d81983f0ce0c49e05cce 29320 text optional ghostscript-x_9.10~dfsg-0ubuntu10.7_arm64.deb d16f3f071a939f0ae85ac27facddfb25 934 text extra ghostscript-x-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 393ac409a31bf782dfb1b8a79590313d 1627648 libs optional libgs9_9.10~dfsg-0ubuntu10.7_arm64.deb 9449a83afb0db56753e57d250b97a667 966 libs extra libgs9-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb 8c41cfbeddd91e9ac85574dedfaf08ab 1913930 libdevel optional libgs-dev_9.10~dfsg-0ubuntu10.7_arm64.deb 8ad18e497b2ce431656d27ac4deec689 982 libdevel extra libgs-dev-dbgsym_9.10~dfsg-0ubuntu10.7_arm64.ddeb c535f50689916094900147bd153bd53f 5433568 debug extra ghostscript-dbg_9.10~dfsg-0ubuntu10.7_arm64.deb Original-Maintainer: Debian Printing Team