Format: 1.8
Date: Thu, 21 Mar 2019 13:15:30 -0400
Source: ghostscript
Binary: ghostscript ghostscript-dbg ghostscript-doc ghostscript-x libgs-dev libgs9 libgs9-common
Architecture: amd64 all
Version: 9.26~dfsg+0-0ubuntu7
Distribution: disco-proposed
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-043.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 ghostscript - interpreter for the PostScript language and for PDF
 ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo
 ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati
 ghostscript-x - interpreter for the PostScript language and for PDF - X11 support
 libgs-dev  - interpreter for the PostScript language and for PDF - Development
 libgs9     - interpreter for the PostScript language and for PDF - Library
 libgs9-common - interpreter for the PostScript language and for PDF - common file
Changes:
 ghostscript (9.26~dfsg+0-0ubuntu7) disco; urgency=medium
 .
   * SECURITY UPDATE: superexec operator is available
     - debian/patches/CVE-2019-3835-pre1.patch: Have gs_cet.ps run from
       gs_init.ps in Resource/Init/gs_cet.ps, Resource/Init/gs_init.ps.
     - debian/patches/CVE-2019-3835-pre2.patch: Undef /odef in
       Resource/Init/gs_cet.ps, Resource/Init/gs_init.ps.
     - debian/patches/CVE-2019-3835-1.patch: restrict superexec and remove
       it in Resource/Init/gs_cet.ps, Resource/Init/gs_dps1.ps,
       Resource/Init/gs_fonts.ps, Resource/Init/gs_init.ps,
       Resource/Init/gs_ttf.ps, Resource/Init/gs_type1.ps.
     - debian/patches/CVE-2019-3835-2.patch: obliterate superexec in
       Resource/Init/gs_init.ps, psi/icontext.c, psi/icstate.h,
       psi/zcontrol.c, psi/zdict.c, psi/zgeneric.c.
     - CVE-2019-3835
   * SECURITY UPDATE: forceput in DefineResource is still accessible
     - debian/patches/CVE-2019-3838-1.patch: make a transient proc
       executeonly in Resource/Init/gs_res.ps.
     - debian/patches/CVE-2019-3838-2.patch: an extra transient proc needs
       executeonly in Resource/Init/gs_res.ps.
     - CVE-2019-3838
Checksums-Sha1:
 7537f7cb99d8b625fe99eb5613764d05052cabe3 15111396 ghostscript-dbg_9.26~dfsg+0-0ubuntu7_amd64.deb
 92d370cced8ccbb80455270b5dd848dd5f5aa202 3406964 ghostscript-doc_9.26~dfsg+0-0ubuntu7_all.deb
 b5924afb3a1cb3afa62ddaf023d007b721c242d6 43008 ghostscript-x_9.26~dfsg+0-0ubuntu7_amd64.deb
 b4e3267368be8e043b1d4ca082154a48772e4f77 12893 ghostscript_9.26~dfsg+0-0ubuntu7_amd64.buildinfo
 db903c45c51b9a97649922c162382f6295aa989c 51708 ghostscript_9.26~dfsg+0-0ubuntu7_amd64.deb
 5eaee615999b6ba42949d1de28ea8c870b4a8efa 25520 libgs-dev_9.26~dfsg+0-0ubuntu7_amd64.deb
 a707ef9d4991fa56ac285711b7ca819fb868371d 5092764 libgs9-common_9.26~dfsg+0-0ubuntu7_all.deb
 c62ab000f087aca15aebd1de15b7a2e02c8b0521 2391084 libgs9_9.26~dfsg+0-0ubuntu7_amd64.deb
Checksums-Sha256:
 901a45c0449cec76295d276c0524f08929559263fce65cc665649b08947f05c5 15111396 ghostscript-dbg_9.26~dfsg+0-0ubuntu7_amd64.deb
 cd3e0739bd0d029d0051052b21cbe0a5c4078f8034779f138776cab15fd30836 3406964 ghostscript-doc_9.26~dfsg+0-0ubuntu7_all.deb
 3651313a05aa5999f73570bb2382791023d75a25c2f8ef384210fb89bd5c16eb 43008 ghostscript-x_9.26~dfsg+0-0ubuntu7_amd64.deb
 1c1601360b3057588054b7ce055adca314bbc7d09163153ff8192f5a8b485a6f 12893 ghostscript_9.26~dfsg+0-0ubuntu7_amd64.buildinfo
 b72e141fc2108177977729c91820c00645ca62abe544c03203928144edfbe9ef 51708 ghostscript_9.26~dfsg+0-0ubuntu7_amd64.deb
 abbbf3793157db4bdb00b9f2ec5f07e48cc396384f69debedc4709e102a68693 25520 libgs-dev_9.26~dfsg+0-0ubuntu7_amd64.deb
 1047aff283a310f4cea46a4bfa27e9abccac467c141b45e672c73c9207ee6d70 5092764 libgs9-common_9.26~dfsg+0-0ubuntu7_all.deb
 b9664a4c3b930900ea18bbfe811b877f0c2a6c2e29a3e115d9cf640ecdfce83d 2391084 libgs9_9.26~dfsg+0-0ubuntu7_amd64.deb
Files:
 3951f7227907722203ecf7d791df5e9e 15111396 debug extra ghostscript-dbg_9.26~dfsg+0-0ubuntu7_amd64.deb
 bd6eac84c6ca859e2af5b2788e87a386 3406964 doc optional ghostscript-doc_9.26~dfsg+0-0ubuntu7_all.deb
 82493bb07f85a8951e2258703883b7f5 43008 text optional ghostscript-x_9.26~dfsg+0-0ubuntu7_amd64.deb
 0979536a8748332efd07e878a42cde55 12893 text optional ghostscript_9.26~dfsg+0-0ubuntu7_amd64.buildinfo
 dfc4e212542c210168d051cd79692afe 51708 text optional ghostscript_9.26~dfsg+0-0ubuntu7_amd64.deb
 a19e388d1b47fcf2eecac77a3ae029d0 25520 libdevel optional libgs-dev_9.26~dfsg+0-0ubuntu7_amd64.deb
 b76a7736c315ea6a11cc61c534216081 5092764 libs optional libgs9-common_9.26~dfsg+0-0ubuntu7_all.deb
 09e9dda3c555a6ebe323a6ea27149d7d 2391084 libs optional libgs9_9.26~dfsg+0-0ubuntu7_amd64.deb
Original-Maintainer: Debian Printing Team <debian-printing@lists.debian.org>