Format: 1.8 Date: Thu, 27 Apr 2017 17:19:53 -0700 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: i386 Version: 9.19~dfsg+1-0ubuntu6.4 Distribution: yakkety Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Steve Beattie Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.19~dfsg+1-0ubuntu6.4) yakkety-security; urgency=medium . * SECURITY UPDATE: invalid handling of parameters to .eqproc and .rsdparams allowed disabling -dSAFER and thus code execution - debian/patches/CVE-2017-8291-1.patch: check .eqproc parameters - debian/patches/CVE-2017-8291-2.patch: check .rsdparams parameters - CVE-2017-8291 * SECURITY UPDATE: use-after-free in color management module. - CVE-2016-10217.patch: Dont create new ctx when pdf14 device reenabled - CVE-2016-10217 * SECURITY UPDATE: divide-by-zero error denial of service in base/gxfill.c - CVE-2016-10219.patch: check for 0 in denominator - CVE-2016-10219 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2016-10220.patch: initialize device data structure correctly - CVE-2016-10220 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-5951.patch: use the correct param list enumerator - CVE-2017-5951 * SECURITY UPDATE: null pointer dereference denial of service - CVE-2017-7207.patch: ensure a device has raster memory, before trying to read it - CVE-2017-7207 Checksums-Sha1: b75f0782f5654576d71677bc712b8520e39f182a 11081684 ghostscript-dbg_9.19~dfsg+1-0ubuntu6.4_i386.deb 420126eb9e1751db2cbe67bc348b804dd9a830e1 1000 ghostscript-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb e3cd2c983899c9407483956327c9ac46682d6ec6 934 ghostscript-x-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb ab394084bb480ac22c69e73fee3bad7db00d93ec 44890 ghostscript-x_9.19~dfsg+1-0ubuntu6.4_i386.deb 49ebd9063b097a41b0fb427756be704bb54c1c54 50128 ghostscript_9.19~dfsg+1-0ubuntu6.4_i386.deb 7bd11d74fa6d6acf06ef7e48dd4e9f7e32587589 994 libgs-dev-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb 0cde73eae68d1dd321aaa270dec103199a930c4f 2562938 libgs-dev_9.19~dfsg+1-0ubuntu6.4_i386.deb 24a1ff835799c0ef722bd2fca78f0089ed2ce486 976 libgs9-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb 4d58dc66a3ff9c60128c8863290fc761be77c07a 2196674 libgs9_9.19~dfsg+1-0ubuntu6.4_i386.deb Checksums-Sha256: e5a445c3fbf895e8b04c8ec95b28aa04d1ecc0500e98b1abe104bd39d048a1d7 11081684 ghostscript-dbg_9.19~dfsg+1-0ubuntu6.4_i386.deb 602a1ff71e2d752fff0afe429178e5a40c1d6a79561f67b74be530efb34b01ec 1000 ghostscript-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb 1d2d62db296cad74797e2395911c4cf90bfaf3884c048125b53259cc5ea05e61 934 ghostscript-x-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb 1d4c2836878e9dd552cef87a9cedf41f2e538b353bafcff85b1d821ebd79c2e3 44890 ghostscript-x_9.19~dfsg+1-0ubuntu6.4_i386.deb ba665d635ed6b5cc1468039c514c0680d3b5474b20561413d4ee24271df249a3 50128 ghostscript_9.19~dfsg+1-0ubuntu6.4_i386.deb 4b64b75ec8324d83028c4af32d95121d14962c2aa2a58e549a306996b79fcd64 994 libgs-dev-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb d378358213fa672d320b26a811e7c05785582e883221d271e2acb5aa33cb90cd 2562938 libgs-dev_9.19~dfsg+1-0ubuntu6.4_i386.deb 7327cfec0b831806b3cfe8c7c0d1e1e507c229a0129896f2bbe517f64de569d8 976 libgs9-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb e1c2ce5e7a3b08b84c03ee57dce0cc9c6cb26aab301ed8f945e8d1aeb10b03c0 2196674 libgs9_9.19~dfsg+1-0ubuntu6.4_i386.deb Files: e46f71cdf35002a4e4a6f31150396289 11081684 debug extra ghostscript-dbg_9.19~dfsg+1-0ubuntu6.4_i386.deb a88d623d22a78e9f45e6c13338c4b8b1 1000 text extra ghostscript-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb 26fbadbdfee2a971371ae6f115deb38e 934 text extra ghostscript-x-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb cf1768b41905ed1a8f0d434ff6ecb20d 44890 text optional ghostscript-x_9.19~dfsg+1-0ubuntu6.4_i386.deb d7beb8807c45046600436f4c320b8648 50128 text optional ghostscript_9.19~dfsg+1-0ubuntu6.4_i386.deb e23e2a18a4a22934fd5623a915178ab1 994 libdevel extra libgs-dev-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb bbfccdb1f2cc923923c75d35377bf81f 2562938 libdevel optional libgs-dev_9.19~dfsg+1-0ubuntu6.4_i386.deb 497eee68ee713a3473b2fa49bea57181 976 libs extra libgs9-dbgsym_9.19~dfsg+1-0ubuntu6.4_i386.ddeb 5cea8f2bf0b225815d3e1bffb797cd63 2196674 libs optional libgs9_9.19~dfsg+1-0ubuntu6.4_i386.deb Original-Maintainer: Debian Printing Team