Bug#793489: marked as done (ghostscript: CVE-2015-3228: Integer overflow)

[owner@bugs.debian.org (Debian Bug Tracking System)]

Your message dated Sat, 25 Jul 2015 10:49:25 +0000
with message-id <E1ZIx1B-0002FV-Tf@franck.debian.org>
and subject line Bug#793489: fixed in ghostscript 8.71~dfsg2-9+squeeze2
has caused the Debian Bug report #793489,
regarding ghostscript: CVE-2015-3228: Integer overflow
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
793489: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793489
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: submit@bugs.debian.org
• Subject: ghostscript: CVE-2015-3228: Integer overflow
• From: Raphael Hertzog <hertzog@debian.org>
• Date: Fri, 24 Jul 2015 16:37:04 +0200
• Message-id: <[🔎] 20150724143704.GA11559@home.ouaza.com>

Package: ghostscript
Severity: important
Tags: security patch

Hi,

the following vulnerability was published for ghostscript.

CVE-2015-3228[0]: Integer overflow

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2015-3228
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3228
    Please adjust the affected versions in the BTS as needed.

All the versions in Debian are affected by the underlying problem
in the memory allocation (see
http://bugs.ghostscript.com/show_bug.cgi?id=696070) but experimental
(9.15~rc1~dfsg-1) does not trigger the segfault due do other changes.

You can reproduce the problem with this:
$ wget http://bugs.ghostscript.com/attachment.cgi?id=11776 -O /tmp/test.ps
$ ps2pdf /tmp/test.ps
Segmentation fault

The suggested patch is here:
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=0c0b0859

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

--- End Message ---

--- Begin Message ---

• To: 793489-close@bugs.debian.org
• Subject: Bug#793489: fixed in ghostscript 8.71~dfsg2-9+squeeze2
• From: Thorsten Alteholz <debian@alteholz.de>
• Date: Sat, 25 Jul 2015 10:49:25 +0000
• Message-id: <E1ZIx1B-0002FV-Tf@franck.debian.org>

Source: ghostscript
Source-Version: 8.71~dfsg2-9+squeeze2

We believe that the bug you reported is fixed in the latest version of
ghostscript, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 793489@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Thorsten Alteholz <debian@alteholz.de> (supplier of updated ghostscript package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 25 Jul 2015 07:03:02 +0200
Source: ghostscript
Binary: ghostscript gs-esp gs-gpl gs-common ghostscript-cups ghostscript-x ghostscript-doc libgs8 libgs-dev
Architecture: source all i386
Version: 8.71~dfsg2-9+squeeze2
Distribution: squeeze-lts
Urgency: high
Maintainer: Debian Printing Team <debian-printing@lists.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description: 
 ghostscript - The GPL Ghostscript PostScript/PDF interpreter
 ghostscript-cups - The GPL Ghostscript PostScript/PDF interpreter - CUPS filters
 ghostscript-doc - The GPL Ghostscript PostScript/PDF interpreter - Documentation
 ghostscript-x - The GPL Ghostscript PostScript/PDF interpreter - X Display suppor
 gs-common  - Dummy package depending on ghostscript
 gs-esp     - Transitional package
 gs-gpl     - Transitional package
 libgs-dev  - The Ghostscript PostScript Library - Development Files
 libgs8     - The Ghostscript PostScript/PDF interpreter Library
Closes: 793489
Changes: 
 ghostscript (8.71~dfsg2-9+squeeze2) squeeze-lts; urgency=high
 .
   * Non-maintainer upload by the Squeeze LTS Team. (Closes: #793489)
   * CVE-2015-3228
     In gs_heap_alloc_bytes(), add a sanity check to ensure we don't
     overflow the variable holding the actual number of bytes we
     allocate.
Checksums-Sha1: 
 2f3a799ca80297694aac6911a1fc78f85c7b1b3c 2638 ghostscript_8.71~dfsg2-9+squeeze2.dsc
 4c15a6819ace153649d104ea6c52abb7a8a22bec 20701498 ghostscript_8.71~dfsg2.orig.tar.gz
 ba4673e45d64ac12d59f5550d6c3498b981570b6 255701 ghostscript_8.71~dfsg2-9+squeeze2.debian.tar.gz
 f9cafb92ca3342251bd3b06da842fdcb23aedbfd 46560 gs-esp_8.71~dfsg2-9+squeeze2_all.deb
 a191c605f06a90a2c064d1546460fda849199be9 46560 gs-gpl_8.71~dfsg2-9+squeeze2_all.deb
 986cd54f2d78112e9e1c020b60b864c589642f3a 46280 gs-common_8.71~dfsg2-9+squeeze2_all.deb
 17cea32d7491580d70ae0a172e891c4f4d4434d9 3233830 ghostscript-doc_8.71~dfsg2-9+squeeze2_all.deb
 3ebd644de77bd995ccba9b8af0efb24e6a375973 83090 ghostscript_8.71~dfsg2-9+squeeze2_i386.deb
 96e70fbd5cb99460323ba903863c5fd36393914e 60198 ghostscript-cups_8.71~dfsg2-9+squeeze2_i386.deb
 b3c8bde1d68914ecb25463a3e2403bfad04f4506 78294 ghostscript-x_8.71~dfsg2-9+squeeze2_i386.deb
 eede1d40c47053682aab8cf17ec793b999d79c4a 6120904 libgs8_8.71~dfsg2-9+squeeze2_i386.deb
 91f15d95570f4e34063641134a0da2f2f8063de4 2615906 libgs-dev_8.71~dfsg2-9+squeeze2_i386.deb
Checksums-Sha256: 
 4a67f525a81800a72e07adcfcd66acb2e34152615ed591f44cb92b05284aca5f 2638 ghostscript_8.71~dfsg2-9+squeeze2.dsc
 afda83e8cbb0c4720f2ebb224528a2a322394c9e8795394204166c6849141ff1 20701498 ghostscript_8.71~dfsg2.orig.tar.gz
 db0aff41fc7ccc83c8efa80922170c66894b0b0515eef4607d69a2ce33669bf0 255701 ghostscript_8.71~dfsg2-9+squeeze2.debian.tar.gz
 70c931e164b5615043640ca07e553b186aa94346a15d4d871d8b5d1e6ee2bf23 46560 gs-esp_8.71~dfsg2-9+squeeze2_all.deb
 eda6df29d26ad30d2d651e2e23c5f31cca84a3d12a1b20dc099171e5b5daf7ff 46560 gs-gpl_8.71~dfsg2-9+squeeze2_all.deb
 b5437669eaa1c2f3b491ee47a080d1475ebd9e1cf2ff56210f15163a2ac7c337 46280 gs-common_8.71~dfsg2-9+squeeze2_all.deb
 5e545da6ee38fc25a585b55bf13e869444559cc39703b3bca50d02935f7f6f3c 3233830 ghostscript-doc_8.71~dfsg2-9+squeeze2_all.deb
 87af71a31e95752924c9c74f36808d3463fe30d3eb12e15bdc29270c22774b77 83090 ghostscript_8.71~dfsg2-9+squeeze2_i386.deb
 045b17179367940fe90cb36515eca11985f88eda456ae8eff3fab72bc41ce806 60198 ghostscript-cups_8.71~dfsg2-9+squeeze2_i386.deb
 236560d039c5693a84cc438a27c86d45e7a65673a64cc1340ca04b74091e6adc 78294 ghostscript-x_8.71~dfsg2-9+squeeze2_i386.deb
 c2567611e52fb763eead7ee1e62423ff4c626c4cf5ed5ee5a6f61e680cdf1505 6120904 libgs8_8.71~dfsg2-9+squeeze2_i386.deb
 515091322d8c1fdca0bfb62014d96fc7ec3acefe4f14141b181a62082968159c 2615906 libgs-dev_8.71~dfsg2-9+squeeze2_i386.deb
Files: 
 2e50d0414a2c0311556961f334c4ae68 2638 text optional ghostscript_8.71~dfsg2-9+squeeze2.dsc
 53a4cc05053d04528160d0499fc38641 20701498 text optional ghostscript_8.71~dfsg2.orig.tar.gz
 d9ffc26c2a7af57adb124cb00a2f5f5f 255701 text optional ghostscript_8.71~dfsg2-9+squeeze2.debian.tar.gz
 5c81e3628d38d349ed4431545471c90e 46560 text extra gs-esp_8.71~dfsg2-9+squeeze2_all.deb
 a5c4ba3c6808112a88860b9c805157e7 46560 text extra gs-gpl_8.71~dfsg2-9+squeeze2_all.deb
 a84c834a8f7d1da4f3a42cc82a4008c2 46280 text extra gs-common_8.71~dfsg2-9+squeeze2_all.deb
 5ae3313d5cb199e493792879291e72ef 3233830 doc optional ghostscript-doc_8.71~dfsg2-9+squeeze2_all.deb
 f8649acafc6b45d4c8af09e2298793f7 83090 text optional ghostscript_8.71~dfsg2-9+squeeze2_i386.deb
 838f45ce1ce563888d6c9379e641ed13 60198 text optional ghostscript-cups_8.71~dfsg2-9+squeeze2_i386.deb
 4f60b0788cbb3b3053fe16fc258d6d98 78294 text optional ghostscript-x_8.71~dfsg2-9+squeeze2_i386.deb
 3281b6a0b67f008748b201b2c146b589 6120904 libs optional libgs8_8.71~dfsg2-9+squeeze2_i386.deb
 b31f92da96428a36d42d827c518d09cd 2615906 libdevel optional libgs-dev_8.71~dfsg2-9+squeeze2_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=/kA6
-----END PGP SIGNATURE-----

--- End Message ---