Accepted ghostscript 9.05~dfsg-6.3+deb7u3 (source all amd64) into oldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 12 Oct 2016 13:14:17 -0400
Source: ghostscript
Binary: ghostscript ghostscript-cups ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg
Architecture: source all amd64
Version: 9.05~dfsg-6.3+deb7u3
Distribution: wheezy-security
Urgency: high
Maintainer: Debian Printing Team <debian-printing@lists.debian.org>
Changed-By: Roberto C. Sanchez <roberto@connexer.com>
Description:
ghostscript - interpreter for the PostScript language and for PDF
ghostscript-cups - interpreter for the PostScript language and for PDF - CUPS filter
ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo
ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati
ghostscript-x - interpreter for the PostScript language and for PDF - X11 support
libgs-dev - interpreter for the PostScript language and for PDF - Development
libgs9 - interpreter for the PostScript language and for PDF - Library
libgs9-common - interpreter for the PostScript language and for PDF - common file
Closes: 839118 839260 839841 839845 839846 840451
Changes:
ghostscript (9.05~dfsg-6.3+deb7u3) wheezy-security; urgency=high
.
* Non-maintainer upload by the LTS Team.
* CVE-2016-8602: check for sufficient params in .sethalftone5 and param
types (Closes: #840451)
* CVE-2013-5653: Information disclosure through getenv, filenameforall
(Closes: #839118)
* CVE-2016-7976: Various userparams allow %pipe% in paths, allowing remote
shell command execution (Closes: #839260)
* CVE-2016-7977: .libfile doesn't check PermitFileReading array, allowing
remote file disclosure (Closes: #839841)
* CVE-2016-7978: reference leak in .setdevice allows use-after-free and
remote code execution (Closes: #839845)
* CVE-2016-7979: type confusion in .initialize_dsc_parser allows remote code
execution (Closes: #839846)
Checksums-Sha1:
17cdf922251e93cb43a34660a5d1012a187891b1 2819 ghostscript_9.05~dfsg-6.3+deb7u3.dsc
355664cfcf82cef9cf17eb9aa0aa667cffa4ed74 113151 ghostscript_9.05~dfsg-6.3+deb7u3.debian.tar.gz
339b06b561f610b5b96efc53e0e9320f80a311a1 2329950 ghostscript-doc_9.05~dfsg-6.3+deb7u3_all.deb
41165f06f83faacf1aab88bda3519b0baa7c1543 1979750 libgs9-common_9.05~dfsg-6.3+deb7u3_all.deb
dae5209c5f7e6b2e2ae19fa6cf09f626f36f26f1 80538 ghostscript_9.05~dfsg-6.3+deb7u3_amd64.deb
388320231bbae05cc9936baf97804299d4c161e8 60094 ghostscript-cups_9.05~dfsg-6.3+deb7u3_amd64.deb
482fca5e65672fa5ec6bbdcadd2ad9ba452958ce 72260 ghostscript-x_9.05~dfsg-6.3+deb7u3_amd64.deb
2f9d7c829ba8992e2ae4af537b2ade29b55d5bf9 1842600 libgs9_9.05~dfsg-6.3+deb7u3_amd64.deb
6265a78b1144875fd0e17717c59d2cf5d9ac21f5 2037004 libgs-dev_9.05~dfsg-6.3+deb7u3_amd64.deb
f21fc19e2030720620978cb0cbe9541c6359c999 5325632 ghostscript-dbg_9.05~dfsg-6.3+deb7u3_amd64.deb
Checksums-Sha256:
885095f617b41514942a50f084e160eb73fbfebcec0862c5247eb733eab56dd7 2819 ghostscript_9.05~dfsg-6.3+deb7u3.dsc
fd980f943da12ed8f0dfbd9d4b87df6c48e3cf30d1a39961a42589fa262305e6 113151 ghostscript_9.05~dfsg-6.3+deb7u3.debian.tar.gz
53eedb5e87c9d59dc0d53bc0af2253ae8e8ba7bce1d33e3be047f136801a642e 2329950 ghostscript-doc_9.05~dfsg-6.3+deb7u3_all.deb
e0f6eb963df50fa9b55820d2c1523ac32e8e4a3dc175fde3c5b0ffa964a91b10 1979750 libgs9-common_9.05~dfsg-6.3+deb7u3_all.deb
ef36ee792c345edd29e79d8b84820414fb7ac148f878ce6f7d9842439ec5f631 80538 ghostscript_9.05~dfsg-6.3+deb7u3_amd64.deb
0a8cc4d6024d19bcb34089fa589ace42b8366e2c6a72c983eca530764d361b2e 60094 ghostscript-cups_9.05~dfsg-6.3+deb7u3_amd64.deb
24e78ba96bd31b8b7d78831af1d897baa780a7238803404a87cd23436806c723 72260 ghostscript-x_9.05~dfsg-6.3+deb7u3_amd64.deb
ed3e99abe5470d382088d2b5f95b799e79ad40d171b148194d38d321bd6fe7e1 1842600 libgs9_9.05~dfsg-6.3+deb7u3_amd64.deb
f5e2ada8bafd098313f18c2a1756d6e7bc2628a8ee3ec1f8522b0c7a694c5839 2037004 libgs-dev_9.05~dfsg-6.3+deb7u3_amd64.deb
c5e6161637ab24c49a7242978ebc3d7befa783399d736df140ae1ace1f7e8d63 5325632 ghostscript-dbg_9.05~dfsg-6.3+deb7u3_amd64.deb
Files:
dfcf86b95e903246fe4f401f7bc94451 2819 text optional ghostscript_9.05~dfsg-6.3+deb7u3.dsc
30a7086c62a5cc3052541ddf85c5f4e8 113151 text optional ghostscript_9.05~dfsg-6.3+deb7u3.debian.tar.gz
06524a1fea2afc7eafd08c7ef36d9b67 2329950 doc optional ghostscript-doc_9.05~dfsg-6.3+deb7u3_all.deb
9c24ad8e733dfd4592953a79b8a01db5 1979750 libs optional libgs9-common_9.05~dfsg-6.3+deb7u3_all.deb
a12422a36d163424f80bb5b2efd91585 80538 text optional ghostscript_9.05~dfsg-6.3+deb7u3_amd64.deb
e55479bf4ea7d2703c020687779cb3e9 60094 text optional ghostscript-cups_9.05~dfsg-6.3+deb7u3_amd64.deb
38434827dce375ba4ef912c1d4709c7f 72260 text optional ghostscript-x_9.05~dfsg-6.3+deb7u3_amd64.deb
18284161d6c34eb6d2e67cace9cd1ae0 1842600 libs optional libgs9_9.05~dfsg-6.3+deb7u3_amd64.deb
36269d4f6a76bee88c17c934a75ad30c 2037004 libdevel optional libgs-dev_9.05~dfsg-6.3+deb7u3_amd64.deb
fb3e6c99251806108e1e034aa9ee3923 5325632 debug extra ghostscript-dbg_9.05~dfsg-6.3+deb7u3_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=tj/o
-----END PGP SIGNATURE-----
Reply to: