Format: 1.8 Date: Wed, 06 Jan 2021 12:44:08 -0500 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: powerpc Version: 9.26~dfsg+0-0ubuntu0.16.04.14 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.26~dfsg+0-0ubuntu0.16.04.14) xenial-security; urgency=medium . * SECURITY UPDATE: integer overflow in opj_t1_encode_cblks - debian/patches/CVE-2018-5727.patch: fix UBSAN signed integer overflow in openjpeg/src/lib/openjp2/t1.c. - CVE-2018-5727 * SECURITY UPDATE: heap overflow in opj_t1_clbl_decode_processor - debian/patches/CVE-2020-6851.patch: reject images whose coordinates are beyond INT_MAX in openjpeg/src/lib/openjp2/j2k.c. - CVE-2020-6851 * SECURITY UPDATE: another heap overflow in opj_t1_clbl_decode_processor - debian/patches/CVE-2020-8112.patch: avoid integer overflow in openjpeg/src/lib/openjp2/tcd.c. - CVE-2020-8112 * SECURITY UPDATE: heap-buffer-overflow - debian/patches/CVE-2020-27814-1.patch: grow buffer size in openjpeg/src/lib/openjp2/tcd.c. - debian/patches/CVE-2020-27814-2.patch: grow it again - debian/patches/CVE-2020-27814-3.patch: and some more - debian/patches/CVE-2020-27814-4.patch: bigger, BIGGER!!! - CVE-2020-27814 * SECURITY UPDATE: global-buffer-overflow - debian/patches/CVE-2020-27824.patch: avoid global buffer overflow on irreversible conversion when too many decomposition levels are specified in openjpeg/src/lib/openjp2/dwt.c. - CVE-2020-27824 * SECURITY UPDATE: out-of-bounds read - debian/patches/CVE-2020-27841.patch: add extra checks to openjpeg/src/lib/openjp2/pi.c, openjpeg/src/lib/openjp2/pi.h, openjpeg/src/lib/openjp2/t2.c. - CVE-2020-27841 * SECURITY UPDATE: null pointer dereference - debian/patches/CVE-2020-27842.patch: add check to openjpeg/src/lib/openjp2/t2.c. - CVE-2020-27842 * SECURITY UPDATE: out-of-bounds read - debian/patches/CVE-2020-27843.patch: add check to openjpeg/src/lib/openjp2/t2.c. - CVE-2020-27843 * SECURITY UPDATE: out-of-bounds read - debian/patches/CVE-2020-27845.patch: add extra checks to openjpeg/src/lib/openjp2/pi.c. - CVE-2020-27845 Checksums-Sha1: 8f31da300dae3e70736331f14b9376e8306de7e2 5908488 ghostscript-dbg_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb ed66a3c0a91951efe791c643169e783c1055ae2f 1010 ghostscript-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 94733785298a7629e9d79bca15e73f7ecb94e760 944 ghostscript-x-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb f7562861040606d70fc05bbac3a6be02281ac76b 41636 ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 2d2b77abc4bd60e976057b5be324e216b20d45fe 47240 ghostscript_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb c742240025d54a6251c095c929e3d863c78f0217 1004 libgs-dev-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb fa12026ab49264c7a184cddf9a333de6f7977361 25460 libgs-dev_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 79f18e621092b67c298b5bed1452e34185661ca5 986 libgs9-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 8612512dae750835be69494dc474809849eb0684 1978006 libgs9_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb Checksums-Sha256: 3d828b1713c2356f55d1a2c9aebb179d59a65dec47f8e8d4ae72a12950d43b63 5908488 ghostscript-dbg_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb b707dd999871de0a201afa602d03091630500ecd89b908c973ae991e2b96b78e 1010 ghostscript-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 7a34866da8d892738d2b8e923bc7330b4a94f8f80f98a86d9df4cdd41bad6e29 944 ghostscript-x-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 58dabf0364cd7a57874cef0fbbdc0c9be0351c631e1ae9d48f494103257cc4c4 41636 ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 88ede93db59c6b7b5a23ecd5ca65aac741fc976a533479179030bd33fc766b03 47240 ghostscript_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 3323fd0fadf92c96cdafa20fe3d0ebc3989f724b3bfe2587f084a9f807359c14 1004 libgs-dev-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb ae3d07828049debdaec37a3bd3c3639c6fa8f2f146eab459d4a5806b697df474 25460 libgs-dev_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 03cc044cf7fc193dc6eac5e4cc60e1d29a63dc2de2b42e13929eabc483ac1f26 986 libgs9-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb b8e7486d81bdc7e28f1074c9b7766556cdf4c6316b967556822fe61c6c863ac2 1978006 libgs9_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb Files: 88741ccf25ce7f8cce090221720f4d01 5908488 debug extra ghostscript-dbg_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb be97632053a538614f4dd4ae744eeebf 1010 text extra ghostscript-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 7f26564caeec0b5dc5b7d557aa3be9a1 944 text extra ghostscript-x-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 4f5ffdc3e6e09399467c4bd921f0a61a 41636 text optional ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 24d03f7e572fc1a0d4eb72131cce114d 47240 text optional ghostscript_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb 76eac3fb20a2a70f918447c33f0836a9 1004 libdevel extra libgs-dev-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb 8de0db78bb67596eaeadf87f9fc85336 25460 libdevel optional libgs-dev_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb fee071dd9cfea454d59c5df7771525ba 986 libs extra libgs9-dbgsym_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.ddeb c5c2ef5947e9574153cf6c830d9499f7 1978006 libs optional libgs9_9.26~dfsg+0-0ubuntu0.16.04.14_powerpc.deb Original-Maintainer: Debian Printing Team