Re: [SECURITY] [DLA 1527-2] ghostscript regression update

To: debian-lts@lists.debian.org
Subject: Re: [SECURITY] [DLA 1527-2] ghostscript regression update
From: Robert Doran <robertd@cse.unsw.edu.au>
Date: Tue, 2 Oct 2018 19:48:22 +1000
Message-id: <[🔎] 20181002094822.GQ15895@cse.unsw.edu.au>
In-reply-to: <2e7f4725-fbe4-d5f1-7642-b65ab6ea0dc3@debian.org>
References: <2e7f4725-fbe4-d5f1-7642-b65ab6ea0dc3@debian.org>

Removed:
   ghostscript 9.06~dfsg-2+deb8u9
   ghostscript-dbg 9.06~dfsg-2+deb8u9
   ghostscript-doc 9.06~dfsg-2+deb8u9
   ghostscript-x 9.06~dfsg-2+deb8u9
   libgs-dev 9.06~dfsg-2+deb8u9
   libgs9 9.06~dfsg-2+deb8u9
   libgs9-common 9.06~dfsg-2+deb8u9

Upgraded.

On Mon, Oct 01, 2018 at 03:20:53PM +0200, Markus Koschany wrote:
> Package        : ghostscript
> Version        : 9.06~dfsg-2+deb8u10
> Debian Bug     : 909999
> 
> Berkeley Roshan Churchill reported a regression for the recent
> security update for ghostscript, announced as DLA-1527-1, caused by an
> incomplete
> fix for CVE-2018-16543. The pdf2ps tool failed to produce any output and
> aborted with /rangecheck in .installpagedevice error.
> 
> For Debian 8 "Jessie", this problem has been fixed in version
> 9.06~dfsg-2+deb8u10.

Reply to:

Prev by Date: Re: Firefox-esr 60?
Next by Date: upload jekyll
Previous by thread: Re: Firefox-esr 60?
Next by thread: upload jekyll
Index(es):
- Date
- Thread