FS#13953 : ghostscript security issues (patch available)

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#13953 - ghostscript security issues (patch available)

Attached to Project: Arch Linux
Opened by kujub (kujub) - Wednesday, 25 March 2009, 11:08 GMT
Last edited by Eric Belanger (Snowman) - Sunday, 24 May 2009, 05:16 GMT

Task Type	Bug Report
Category	Security
Status	Closed
Assigned To	No-one
Architecture	All
Severity	High
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Description:

Two security issues have been discovered in Ghostscript 8.64

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0583
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584
http://bugs.gentoo.org/show_bug.cgi?id=261087

Patch:
http://bugs.gentoo.org/attachment.cgi?id=184187

Additional info:
* package version(s)
ghostscript 8.64-3

This task depends upon

This task blocks these from closing
~~FS#14426 - [ghostscript] and libpng issue~~

Closed by Eric Belanger (Snowman)
Sunday, 24 May 2009, 05:16 GMT
Reason for closing: Fixed

Comments (3)
Related Tasks (0/0)

Comment by kujub (kujub) - Wednesday, 25 March 2009, 11:16 GMT

Additional reverence:
http://www.gentoo.org/security/en/glsa/glsa-200903-37.xml

Comment by von_Wanderlust (von_Wanderlust) - Saturday, 23 May 2009, 11:52 GMT

Looks like latest version 8.64-5 now has patch (ghostscript-CVE-2009-0583_and_0584.patch) applied. OK to close?

Comment by kujub (kujub) - Saturday, 23 May 2009, 13:20 GMT

Yes, appears to be fixed. Thanks.

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

Arch Linux

FS#13953 - ghostscript security issues (patch available)

Details

Loading...