Format: 1.7 Date: Mon, 12 Jul 2010 12:33:50 -0400 Source: ghostscript Binary: ghostscript gs gs-esp gs-gpl gs-aladdin gs-common ghostscript-x gs-esp-x ghostscript-doc libgs8 libgs-dev libgs-esp-dev Architecture: all i386 Version: 8.61.dfsg.1-1ubuntu3.3 Distribution: hardy Urgency: low Maintainer: Ubuntu/i386 Build Daemon Changed-By: Marc Deslauriers Description: ghostscript - The GPL Ghostscript PostScript/PDF interpreter ghostscript-doc - The GPL Ghostscript PostScript/PDF interpreter - Documentation ghostscript-x - The GPL Ghostscript PostScript/PDF interpreter - X Display suppor gs - Transitional package gs-aladdin - Transitional package gs-common - Transitional package gs-esp - Transitional package gs-esp-x - Transitional package gs-gpl - Transitional package libgs-dev - The Ghostscript PostScript Library - Development Files libgs-esp-dev - Transitional package libgs8 - The Ghostscript PostScript/PDF interpreter Library Launchpad-Bugs-Fixed: 546009 546009 Changes: ghostscript (8.61.dfsg.1-1ubuntu3.3) hardy-security; urgency=low . * SECURITY UPDATE: arbitrary code execution via unlimited recursive procedure invocations (LP: #546009) - debian/patches/CVE-2010-1628.dpatch: only initialize structures if all allocations were successful in src/ialloc.c, src/idosave.h, src/isave.c. - CVE-2010-1628 * SECURITY UPDATE: arbitrary code execution via crafted PostScript file (LP: #546009) - debian/patches/CVE-2010-1869.dpatch: use correct buffer sizes in src/int.mak, src/iscan.c, src/iscan.h. - CVE-2010-1869 * SECURITY UPDATE: arbitrary code execution via long names - debian/patches/security-long-names.dpatch: check against maximum size in psi/iscan.c. - No CVE number yet. Files: d6c6aafc533fb04259da586c17eaf22f 28148 text extra gs_8.61.dfsg.1-1ubuntu3.3_all.deb d95229c1441f97019146878fb73d762e 28138 text extra gs-esp_8.61.dfsg.1-1ubuntu3.3_all.deb 3c8d7b8599997bcb23cabb7a918832c5 28142 text extra gs-gpl_8.61.dfsg.1-1ubuntu3.3_all.deb bf7ef9657cf30a47b7679274efd79d02 28156 text extra gs-aladdin_8.61.dfsg.1-1ubuntu3.3_all.deb c851d65e97383deeffcb3b069a2f6f9e 28148 text extra gs-common_8.61.dfsg.1-1ubuntu3.3_all.deb 3261b0f7dc7eeba4f1b569b3cf5446b2 28140 text extra gs-esp-x_8.61.dfsg.1-1ubuntu3.3_all.deb 015b0b4e174ed35213c848e94b83c6d5 2725506 doc optional ghostscript-doc_8.61.dfsg.1-1ubuntu3.3_all.deb 3a733021a1624b9e2e179fa8f53d24b0 28152 text extra libgs-esp-dev_8.61.dfsg.1-1ubuntu3.3_all.deb a46714e812711d0beacf68f274bcb203 739970 text optional ghostscript_8.61.dfsg.1-1ubuntu3.3_i386.deb f4556892e271819f17b75281a9d8f488 60466 text optional ghostscript-x_8.61.dfsg.1-1ubuntu3.3_i386.deb 50b129fddc0f7a8e6346ec6dba054c0e 2217072 libs optional libgs8_8.61.dfsg.1-1ubuntu3.3_i386.deb bca62c5a4d6fa8c22c9ce0a9ef990f63 15096 libdevel optional libgs-dev_8.61.dfsg.1-1ubuntu3.3_i386.deb Original-Maintainer: Masayuki Hatta (mhatta)