[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DLA 1527-2] ghostscript regression update



Removed:
   ghostscript 9.06~dfsg-2+deb8u9
   ghostscript-dbg 9.06~dfsg-2+deb8u9
   ghostscript-doc 9.06~dfsg-2+deb8u9
   ghostscript-x 9.06~dfsg-2+deb8u9
   libgs-dev 9.06~dfsg-2+deb8u9
   libgs9 9.06~dfsg-2+deb8u9
   libgs9-common 9.06~dfsg-2+deb8u9

Upgraded.

On Mon, Oct 01, 2018 at 03:20:53PM +0200, Markus Koschany wrote:
> Package        : ghostscript
> Version        : 9.06~dfsg-2+deb8u10
> Debian Bug     : 909999
> 
> Berkeley Roshan Churchill reported a regression for the recent
> security update for ghostscript, announced as DLA-1527-1, caused by an
> incomplete
> fix for CVE-2018-16543. The pdf2ps tool failed to produce any output and
> aborted with /rangecheck in .installpagedevice error.
> 
> For Debian 8 "Jessie", this problem has been fixed in version
> 9.06~dfsg-2+deb8u10.


Reply to: