2014-07-15 19:59:48 |
Mike O'Connell |
bug |
|
|
added bug |
2014-07-15 19:59:48 |
Mike O'Connell |
attachment added |
|
An example pdf which hangs gs https://bugs.launchpad.net/bugs/1342312/+attachment/4153384/+files/WaddellAndReedJCL0814ThirdHProvSE.pdf |
|
2014-07-15 20:01:45 |
Mike O'Connell |
attachment added |
|
Another example https://bugs.launchpad.net/ubuntu/+source/ghostscript/+bug/1342312/+attachment/4153398/+files/IndependenceUncorkedLSL0814QtrProvSE.pdf |
|
2014-08-08 17:40:23 |
Jamie Strandboge |
ghostscript (Ubuntu): importance |
Undecided |
Low |
|
2014-08-08 17:40:26 |
Jamie Strandboge |
information type |
Private Security |
Public Security |
|
2014-09-05 17:13:57 |
Marc Deslauriers |
ghostscript (Ubuntu): status |
New |
Confirmed |
|
2014-12-01 14:27:25 |
Tom Kaltenbrunner |
bug watch added |
|
http://bugs.ghostscript.com/show_bug.cgi?id=694811 |
|
2014-12-01 14:27:25 |
Tom Kaltenbrunner |
attachment added |
|
overprint-infinite-loop.patch https://bugs.launchpad.net/ubuntu/+source/ghostscript/+bug/1342312/+attachment/4272164/+files/overprint-infinite-loop.patch |
|
2014-12-01 16:23:20 |
Ubuntu Foundations Team Bug Bot |
tags |
amd64 apport-bug trusty |
amd64 apport-bug patch trusty |
|
2014-12-01 16:23:28 |
Ubuntu Foundations Team Bug Bot |
bug |
|
|
added subscriber Ubuntu Review Team |
2014-12-01 16:40:45 |
Till Kamppeter |
nominated for series |
|
Ubuntu Trusty |
|
2014-12-01 16:40:45 |
Till Kamppeter |
bug task added |
|
ghostscript (Ubuntu Trusty) |
|
2014-12-01 16:40:57 |
Till Kamppeter |
ghostscript (Ubuntu): status |
Confirmed |
Fix Released |
|
2014-12-01 16:41:05 |
Till Kamppeter |
ghostscript (Ubuntu Trusty): status |
New |
Confirmed |
|
2014-12-01 16:41:13 |
Till Kamppeter |
ghostscript (Ubuntu Trusty): importance |
Undecided |
Low |
|
2015-03-18 08:52:01 |
Rolf Leggewie |
attachment added |
|
debdiff for trusty https://bugs.launchpad.net/ubuntu/+source/ghostscript/+bug/1342312/+attachment/4348842/+files/LP1342312_trusty.patch |
|
2015-03-18 08:55:57 |
Rolf Leggewie |
bug |
|
|
added subscriber Ubuntu Sponsors Team |
2015-03-18 09:04:40 |
Rolf Leggewie |
description |
On a few pdfs, gs hangs and uses 100% cpu forever.
This could be used as a denial of service through imagemagick which uses ghostscript as a delegate, and commonly used in php etc... which is how I found the issue.
The packages from utopic (9.14~dfsg-0ubuntu3) processes these pdfs correctly.
To reproduce:
gs WaddellAndReedJCL0814ThirdHProvSE.pdf
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: ghostscript 9.10~dfsg-0ubuntu10.2
ProcVersionSignature: Ubuntu 3.13.0-30.55-generic 3.13.11.2
Uname: Linux 3.13.0-30-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.2
Architecture: amd64
CupsErrorLog:
CurrentDesktop: Unity
Date: Tue Jul 15 14:34:26 2014
InstallationDate: Installed on 2014-04-20 (86 days ago)
InstallationMedia: Ubuntu 14.04 LTS "Trusty Tahr" - Release amd64 (20140417)
Lpstat:
device for Bizhub7222: socket://10.0.0.201:9100
device for HP-Photosmart-6520-series: dnssd://Photosmart%206520%20series%20%5B1B47AD%5D._ipp._tcp.local/
MachineType: ASUSTeK COMPUTER INC. UX32VD
Papersize: letter
PpdFiles:
HP-Photosmart-6520-series: HP Photosmart 6520 Series, hpcups 3.14.3
Bizhub7222: HP LaserJet 5L - CUPS+Gutenprint v5.2.10-pre2
ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-30-generic root=UUID=2f256b0b-ee87-463a-af04-e892e0be9192 ro quiet splash pcie_aspm=force drm.vblankoffdelay=1 i915.semaphores=1
SourcePackage: ghostscript
UpgradeStatus: No upgrade log present (probably fresh install)
dmi.bios.date: 11/16/2012
dmi.bios.vendor: American Megatrends Inc.
dmi.bios.version: UX32VD.213
dmi.board.asset.tag: ATN12345678901234567
dmi.board.name: UX32VD
dmi.board.vendor: ASUSTeK COMPUTER INC.
dmi.board.version: 1.0
dmi.chassis.asset.tag: No Asset Tag
dmi.chassis.type: 10
dmi.chassis.vendor: ASUSTeK COMPUTER INC.
dmi.chassis.version: 1.0
dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrUX32VD.213:bd11/16/2012:svnASUSTeKCOMPUTERINC.:pnUX32VD:pvr1.0:rvnASUSTeKCOMPUTERINC.:rnUX32VD:rvr1.0:cvnASUSTeKCOMPUTERINC.:ct10:cvr1.0:
dmi.product.name: UX32VD
dmi.product.version: 1.0
dmi.sys.vendor: ASUSTeK COMPUTER INC. |
SRU justification
On a few pdfs, gs hangs and uses 100% cpu forever.
This could be used as a denial of service through imagemagick which uses ghostscript as a delegate, and commonly used in php etc... which is how I found the issue.
The packages from utopic (9.14~dfsg-0ubuntu3) processes these pdfs correctly.
SRU test case (PDF attached to this ticket):
gs WaddellAndReedJCL0814ThirdHProvSE.pdf
SRU Regression potential:
tbd
SRU Other info:
This has been fixed upstream in commit abd38464f9b which has already landed in utopic and later. The SRU is then to backprt this patch to trusty.
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: ghostscript 9.10~dfsg-0ubuntu10.2
ProcVersionSignature: Ubuntu 3.13.0-30.55-generic 3.13.11.2
Uname: Linux 3.13.0-30-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.2
Architecture: amd64
CupsErrorLog:
CurrentDesktop: Unity
Date: Tue Jul 15 14:34:26 2014
InstallationDate: Installed on 2014-04-20 (86 days ago)
InstallationMedia: Ubuntu 14.04 LTS "Trusty Tahr" - Release amd64 (20140417)
Lpstat:
device for Bizhub7222: socket://10.0.0.201:9100
device for HP-Photosmart-6520-series: dnssd://Photosmart%206520%20series%20%5B1B47AD%5D._ipp._tcp.local/
MachineType: ASUSTeK COMPUTER INC. UX32VD
Papersize: letter
PpdFiles:
HP-Photosmart-6520-series: HP Photosmart 6520 Series, hpcups 3.14.3
Bizhub7222: HP LaserJet 5L - CUPS+Gutenprint v5.2.10-pre2
ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-30-generic root=UUID=2f256b0b-ee87-463a-af04-e892e0be9192 ro quiet splash pcie_aspm=force drm.vblankoffdelay=1 i915.semaphores=1
SourcePackage: ghostscript
UpgradeStatus: No upgrade log present (probably fresh install)
dmi.bios.date: 11/16/2012
dmi.bios.vendor: American Megatrends Inc.
dmi.bios.version: UX32VD.213
dmi.board.asset.tag: ATN12345678901234567
dmi.board.name: UX32VD
dmi.board.vendor: ASUSTeK COMPUTER INC.
dmi.board.version: 1.0
dmi.chassis.asset.tag: No Asset Tag
dmi.chassis.type: 10
dmi.chassis.vendor: ASUSTeK COMPUTER INC.
dmi.chassis.version: 1.0
dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrUX32VD.213:bd11/16/2012:svnASUSTeKCOMPUTERINC.:pnUX32VD:pvr1.0:rvnASUSTeKCOMPUTERINC.:rnUX32VD:rvr1.0:cvnASUSTeKCOMPUTERINC.:ct10:cvr1.0:
dmi.product.name: UX32VD
dmi.product.version: 1.0
dmi.sys.vendor: ASUSTeK COMPUTER INC. |
|
2015-03-18 09:05:02 |
Rolf Leggewie |
ghostscript (Ubuntu Trusty): importance |
Low |
Medium |
|
2015-03-18 09:05:52 |
Rolf Leggewie |
description |
SRU justification
On a few pdfs, gs hangs and uses 100% cpu forever.
This could be used as a denial of service through imagemagick which uses ghostscript as a delegate, and commonly used in php etc... which is how I found the issue.
The packages from utopic (9.14~dfsg-0ubuntu3) processes these pdfs correctly.
SRU test case (PDF attached to this ticket):
gs WaddellAndReedJCL0814ThirdHProvSE.pdf
SRU Regression potential:
tbd
SRU Other info:
This has been fixed upstream in commit abd38464f9b which has already landed in utopic and later. The SRU is then to backprt this patch to trusty.
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: ghostscript 9.10~dfsg-0ubuntu10.2
ProcVersionSignature: Ubuntu 3.13.0-30.55-generic 3.13.11.2
Uname: Linux 3.13.0-30-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.2
Architecture: amd64
CupsErrorLog:
CurrentDesktop: Unity
Date: Tue Jul 15 14:34:26 2014
InstallationDate: Installed on 2014-04-20 (86 days ago)
InstallationMedia: Ubuntu 14.04 LTS "Trusty Tahr" - Release amd64 (20140417)
Lpstat:
device for Bizhub7222: socket://10.0.0.201:9100
device for HP-Photosmart-6520-series: dnssd://Photosmart%206520%20series%20%5B1B47AD%5D._ipp._tcp.local/
MachineType: ASUSTeK COMPUTER INC. UX32VD
Papersize: letter
PpdFiles:
HP-Photosmart-6520-series: HP Photosmart 6520 Series, hpcups 3.14.3
Bizhub7222: HP LaserJet 5L - CUPS+Gutenprint v5.2.10-pre2
ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-30-generic root=UUID=2f256b0b-ee87-463a-af04-e892e0be9192 ro quiet splash pcie_aspm=force drm.vblankoffdelay=1 i915.semaphores=1
SourcePackage: ghostscript
UpgradeStatus: No upgrade log present (probably fresh install)
dmi.bios.date: 11/16/2012
dmi.bios.vendor: American Megatrends Inc.
dmi.bios.version: UX32VD.213
dmi.board.asset.tag: ATN12345678901234567
dmi.board.name: UX32VD
dmi.board.vendor: ASUSTeK COMPUTER INC.
dmi.board.version: 1.0
dmi.chassis.asset.tag: No Asset Tag
dmi.chassis.type: 10
dmi.chassis.vendor: ASUSTeK COMPUTER INC.
dmi.chassis.version: 1.0
dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrUX32VD.213:bd11/16/2012:svnASUSTeKCOMPUTERINC.:pnUX32VD:pvr1.0:rvnASUSTeKCOMPUTERINC.:rnUX32VD:rvr1.0:cvnASUSTeKCOMPUTERINC.:ct10:cvr1.0:
dmi.product.name: UX32VD
dmi.product.version: 1.0
dmi.sys.vendor: ASUSTeK COMPUTER INC. |
= SRU justification =
On a few pdfs, gs hangs and uses 100% cpu forever.
This could be used as a denial of service through imagemagick which uses ghostscript as a delegate, and commonly used in php etc... which is how I found the issue.
The packages from utopic (9.14~dfsg-0ubuntu3) processes these pdfs correctly.
= SRU test case (PDF attached to this ticket) =
gs WaddellAndReedJCL0814ThirdHProvSE.pdf
= SRU Regression potential =
tbd
= SRU Other info =
This has been fixed upstream in commit abd38464f9b which has already landed in utopic and later. The SRU is then to backprt this patch to trusty.
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: ghostscript 9.10~dfsg-0ubuntu10.2
ProcVersionSignature: Ubuntu 3.13.0-30.55-generic 3.13.11.2
Uname: Linux 3.13.0-30-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.2
Architecture: amd64
CupsErrorLog:
CurrentDesktop: Unity
Date: Tue Jul 15 14:34:26 2014
InstallationDate: Installed on 2014-04-20 (86 days ago)
InstallationMedia: Ubuntu 14.04 LTS "Trusty Tahr" - Release amd64 (20140417)
Lpstat:
device for Bizhub7222: socket://10.0.0.201:9100
device for HP-Photosmart-6520-series: dnssd://Photosmart%206520%20series%20%5B1B47AD%5D._ipp._tcp.local/
MachineType: ASUSTeK COMPUTER INC. UX32VD
Papersize: letter
PpdFiles:
HP-Photosmart-6520-series: HP Photosmart 6520 Series, hpcups 3.14.3
Bizhub7222: HP LaserJet 5L - CUPS+Gutenprint v5.2.10-pre2
ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-30-generic root=UUID=2f256b0b-ee87-463a-af04-e892e0be9192 ro quiet splash pcie_aspm=force drm.vblankoffdelay=1 i915.semaphores=1
SourcePackage: ghostscript
UpgradeStatus: No upgrade log present (probably fresh install)
dmi.bios.date: 11/16/2012
dmi.bios.vendor: American Megatrends Inc.
dmi.bios.version: UX32VD.213
dmi.board.asset.tag: ATN12345678901234567
dmi.board.name: UX32VD
dmi.board.vendor: ASUSTeK COMPUTER INC.
dmi.board.version: 1.0
dmi.chassis.asset.tag: No Asset Tag
dmi.chassis.type: 10
dmi.chassis.vendor: ASUSTeK COMPUTER INC.
dmi.chassis.version: 1.0
dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrUX32VD.213:bd11/16/2012:svnASUSTeKCOMPUTERINC.:pnUX32VD:pvr1.0:rvnASUSTeKCOMPUTERINC.:rnUX32VD:rvr1.0:cvnASUSTeKCOMPUTERINC.:ct10:cvr1.0:
dmi.product.name: UX32VD
dmi.product.version: 1.0
dmi.sys.vendor: ASUSTeK COMPUTER INC. |
|
2015-03-31 12:46:42 |
Marc Deslauriers |
bug task added |
|
gs-gpl |
|
2015-03-31 12:59:25 |
Marc Deslauriers |
nominated for series |
|
Ubuntu Utopic |
|
2015-03-31 12:59:25 |
Marc Deslauriers |
bug task added |
|
ghostscript (Ubuntu Utopic) |
|
2015-03-31 12:59:33 |
Marc Deslauriers |
ghostscript (Ubuntu Utopic): status |
New |
Fix Released |
|
2015-03-31 13:08:22 |
Marc Deslauriers |
ghostscript (Ubuntu Trusty): status |
Confirmed |
In Progress |
|
2015-03-31 13:08:26 |
Marc Deslauriers |
removed subscriber Ubuntu Sponsors Team |
|
|
|
2015-03-31 13:08:33 |
Marc Deslauriers |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2015-04-01 17:44:53 |
Chris J Arges |
ghostscript (Ubuntu Trusty): status |
In Progress |
Fix Committed |
|
2015-04-01 17:44:57 |
Chris J Arges |
bug |
|
|
added subscriber SRU Verification |
2015-04-01 17:45:00 |
Chris J Arges |
tags |
amd64 apport-bug patch trusty |
amd64 apport-bug patch trusty verification-needed |
|
2015-04-01 18:02:18 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/trusty-proposed/ghostscript |
|
2015-06-12 12:15:44 |
Till Kamppeter |
tags |
amd64 apport-bug patch trusty verification-needed |
amd64 apport-bug patch trusty verification-done |
|
2015-06-17 15:50:49 |
Launchpad Janitor |
ghostscript (Ubuntu Trusty): status |
Fix Committed |
Fix Released |
|
2015-06-17 15:50:54 |
Chris J Arges |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|