Format: 1.8 Date: Thu, 27 Apr 2017 19:05:47 -0700 Source: ghostscript Binary: ghostscript gs-common ghostscript-cups ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: powerpc Version: 9.05~dfsg-0ubuntu4.5 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Steve Beattie Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-cups - interpreter for the PostScript language and for PDF - CUPS filter ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support gs-common - Transitional dummy package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.05~dfsg-0ubuntu4.5) precise-security; urgency=medium . * SECURITY UPDATE: invalid handling of parameters to .eqproc and .rsdparams allowed disabling -dSAFER and thus code execution - debian/patches/CVE-2017-8291-1.patch: check .eqproc parameters - debian/patches/CVE-2017-8291-2.patch: check .rsdparams parameters - CVE-2017-8291 * SECURITY UPDATE: use-after-free in color management module. - CVE-2016-10217.patch: Don't create new ctx when pdf14 device reenabled - CVE-2016-10217 * SECURITY UPDATE: divide-by-zero error denial of service in base/gxfill.c - CVE-2016-10219.patch: check for 0 in denominator - CVE-2016-10219 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2016-10220.patch: initialize device data structure correctly - CVE-2016-10220 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-5951.patch: use the correct param list enumerator - CVE-2017-5951 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-7207.patch: ensure a device has raster memory, before trying to read it - CVE-2017-7207 Checksums-Sha1: 22d17a6fc55f668113f8a1cb05f2b31678197c30 44520 ghostscript_9.05~dfsg-0ubuntu4.5_powerpc.deb 281f945adcc240ec3761b2c9e1970e169884d9c1 4150 ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 80746a40095bf2876e6e78260b16f4cdcc306fda 24092 ghostscript-cups_9.05~dfsg-0ubuntu4.5_powerpc.deb a48b5f3201c548debd2b023e79ba5becf3816c6c 17072 ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 9b4d5d2fb6f6b4a82fe217899dbe3be064a7d81a 39062 ghostscript-x_9.05~dfsg-0ubuntu4.5_powerpc.deb d4c6ba29081f2dc8679a3e37a2c678335d0bf23b 70060 ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 076768be62f179e8ed2537938a3d4e417bf87e09 2216102 libgs9_9.05~dfsg-0ubuntu4.5_powerpc.deb af3a1f030795496581b3c7c32b59e487f6d07529 4063384 libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb f52fd3023f689c3ff7fb5a785b6775a0cb0398db 2789098 libgs-dev_9.05~dfsg-0ubuntu4.5_powerpc.deb e080da73753c37086f8744b2a4d2fecf52bab56d 8688316 ghostscript-dbg_9.05~dfsg-0ubuntu4.5_powerpc.deb Checksums-Sha256: a0a4f47b65e2b10c860f1e6b1832eb4881e26b82f609b997233d17228c6ef4fb 44520 ghostscript_9.05~dfsg-0ubuntu4.5_powerpc.deb 2df3e20aec798838e4bdf6654eec46e668dc53f44321e53595c1a35d5c05fd80 4150 ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 76596387f0f2436e9c283ce4e7f6177bb426f837ae7390780af3bb900d4a9e8d 24092 ghostscript-cups_9.05~dfsg-0ubuntu4.5_powerpc.deb aed68f45de2e5fd0f935eae881fc020458a1ae7c56393b5a1ff129760a7446ca 17072 ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 307d24ae78977c1d06f755cf62851c4fb91e3847924fef8ffa9b1af63e77c3e3 39062 ghostscript-x_9.05~dfsg-0ubuntu4.5_powerpc.deb 4aa1e63014f839e208773d1c5619f7bf00fafb3c5559d75d83e2ef487a59fa29 70060 ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 4b6dfad0d5740063d9150a7dedbe1ba81e313e2f77d6be8b2d34112b43b8d67e 2216102 libgs9_9.05~dfsg-0ubuntu4.5_powerpc.deb 704be880640bb32e0fc3e1de36da07833869db97d6438de7d6470865a85db288 4063384 libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 96cd9b0f67a2bf2d1b961016d64d14db916fbb12b7fb7102267dbaf94b846b52 2789098 libgs-dev_9.05~dfsg-0ubuntu4.5_powerpc.deb 833072dbde75d7d0b84b47067cb5c01b66c5e3b0e6fff641fe1d836be794e17f 8688316 ghostscript-dbg_9.05~dfsg-0ubuntu4.5_powerpc.deb Files: 522509d6cb743f3bf3ae81554ffc7479 44520 text optional ghostscript_9.05~dfsg-0ubuntu4.5_powerpc.deb f046364cb8d3129ba464cc15b048087f 4150 text extra ghostscript-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 1279eddaf1cb8f52da1db7d35a8c47a6 24092 text optional ghostscript-cups_9.05~dfsg-0ubuntu4.5_powerpc.deb 6e3f67a7ad14ae459c15e7218c581658 17072 text extra ghostscript-cups-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 07078674b5e013d9e55ef6ec774da3c2 39062 text optional ghostscript-x_9.05~dfsg-0ubuntu4.5_powerpc.deb 679b9975a8369c38fdf2f371f9ef832d 70060 text extra ghostscript-x-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 9753a849d58cca0d747e1c0bd8ba481a 2216102 libs optional libgs9_9.05~dfsg-0ubuntu4.5_powerpc.deb be32974072276506320ad4a317c83c07 4063384 libs extra libgs9-dbgsym_9.05~dfsg-0ubuntu4.5_powerpc.ddeb 17bbd3d96dcd60d47c10c010b027112d 2789098 libdevel optional libgs-dev_9.05~dfsg-0ubuntu4.5_powerpc.deb fa0c0a9c716faec7d0561183590bd5da 8688316 debug extra ghostscript-dbg_9.05~dfsg-0ubuntu4.5_powerpc.deb Original-Maintainer: Debian Printing Team