Ghostscript is vulnerable to CVE-2010-1628

bug-ghostscript

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Ghostscript is vulnerable to CVE-2010-1628

From:	Markus Steinborn
Subject:	Ghostscript is vulnerable to CVE-2010-1628
Date:	Wed, 21 Jul 2010 18:47:25 +0200
User-agent:	Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.10) Gecko/20100504 SeaMonkey/2.0.5

Hi Didier,

GNU Ghostscript is vulnerable to CVE-2010-1628.

http://bugs.debian.org/584516
https://bugs.launchpad.net/ubuntu/+source/ghostscript/+bug/546009
http://bugs.ghostscript.com/show_bug.cgi?id=691295
https://bugzilla.redhat.com/show_bug.cgi?id=592492

The attached patch (backported to Ghostscript 8.71 from upstream SVN byRedhat) should fix it.



Thanks

Markus Steinborn
GNU gv maintainer

[Prev in Thread]

Current Thread

[Next in Thread]

Ghostscript is vulnerable to CVE-2010-1628, Markus Steinborn <=
- Re: Ghostscript is vulnerable to CVE-2010-1628, Markus Steinborn, 2010/07/21
- Re: Ghostscript is vulnerable to CVE-2010-1628, Karl Berry, 2010/07/21
  - Re: Ghostscript is vulnerable to CVE-2010-1628, Didier LINK, 2010/07/25

Next by Date: Re: Ghostscript is vulnerable to CVE-2010-1628
Next by thread: Re: Ghostscript is vulnerable to CVE-2010-1628
Index(es):
- Date
- Thread