[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#793489: marked as done (ghostscript: CVE-2015-3228: Integer overflow)

Your message dated Sun, 26 Jul 2015 19:19:12 +0000
with message-id <E1ZJRS4-0006QE-9o@franck.debian.org>
and subject line Bug#793489: fixed in ghostscript 9.15~dfsg-1
has caused the Debian Bug report #793489,
regarding ghostscript: CVE-2015-3228: Integer overflow
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
793489: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793489
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: ghostscript
Severity: important
Tags: security patch

Hi,

the following vulnerability was published for ghostscript.

CVE-2015-3228[0]: Integer overflow

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2015-3228
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3228
    Please adjust the affected versions in the BTS as needed.

All the versions in Debian are affected by the underlying problem
in the memory allocation (see
http://bugs.ghostscript.com/show_bug.cgi?id=696070) but experimental
(9.15~rc1~dfsg-1) does not trigger the segfault due do other changes.

You can reproduce the problem with this:
$ wget http://bugs.ghostscript.com/attachment.cgi?id=11776 -O /tmp/test.ps
$ ps2pdf /tmp/test.ps
Segmentation fault

The suggested patch is here:
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=0c0b0859

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

--- End Message ---
--- Begin Message --- 
Source: ghostscript
Source-Version: 9.15~dfsg-1

We believe that the bug you reported is fixed in the latest version of
ghostscript, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 793489@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jonas Smedegaard <dr@jones.dk> (supplier of updated ghostscript package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 26 Jul 2015 17:34:11 +0200
Source: ghostscript
Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg
Architecture: source amd64 all
Version: 9.15~dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Printing Team <debian-printing@lists.debian.org>
Changed-By: Jonas Smedegaard <dr@jones.dk>
Description:
 ghostscript - interpreter for the PostScript language and for PDF
 ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo
 ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati
 ghostscript-x - interpreter for the PostScript language and for PDF - X11 support
 libgs-dev  - interpreter for the PostScript language and for PDF - Development
 libgs9     - interpreter for the PostScript language and for PDF - Library
 libgs9-common - interpreter for the PostScript language and for PDF - common file
Closes: 531624 793489
Changes:
 ghostscript (9.15~dfsg-1) unstable; urgency=medium
 .
   [ upstream ]
   * New release 9.07.
     Highlights:
     + Licensing changed to GNU Affero General Public License (AGPL).
     + Ghostscript now has the option to be built as thread safe.
     + The pdfwrite devices now supports linearized (or optimized for
       fast web view) output directly.
     + Supports Postscript string and array objects with >64k entries.
     + Supports file sizes >4Gb - in particular reading and writing PDF
       files, and as side effect supports 64 bit Postscript integer
       objects.
     + All CMYK devices supports simulated overprint of spot colors.
     + Support for use of DeviceN ICC color profiles as the output
       profile with the tiffsep and psdcmyk devices.
     + Support for customized named color handling with DeviceN colors.
     + Support for black point compensation.
     + Support for K preservation in CMYK to CMYK conversions.
     + Support for DeviceLink profiles for graphic, image and text
       objects.
     + Support for custom color replacement.
     + Increased control in specifying color conversions as a function of
       object type.
     + Provide BigTIFF output option, when linked against recent libtiff.
     + LittleCMS updated to 2.4 [Debian instead links to shared lib].
       Closes: bug#531624. Thanks to Moritz Muehlenhoff and Bastien
       Roucaries.
   * New releases 9.09 and 9.10.
     Highlights:
     + New Background printing (BGPrint) feature to speedup processing of
       certain classes of files.
     + New GrayDetection feature to detect and convert nearly-grey color
       input to grayscale for some drivers.
     + Misc. improvements for Windows environments.
     + Updated URW Postscript font set, fixing compatibility problems
       with the Adobe fonts [Debian uses separately packaged fonts].
   * New release 9.14.
     Highlights:
     + pdfwrite now uses same color management as for rendering devices.
     + New device 'eps2write' to create EPS files using ps2write.
     + Support customisation of output for specific devices.
     + Reduced memory usage processing PDF with transparency to either
       display device or high level vector non-transparency devices like
       ps2write or pdfwrite when 'flattening' to PDF 1.3 or earlier.
     + New --saved-page option to spool and render in arbitrary order.
     + Improved performance by more extensive use of multiple threads.
     + New device 'pwgraster' to render for PWG Raster output.
     + CUPS device improved support for PPD-less printing.
   * New release 9.15.
     Highlights:
     + Support for PDF security handler revision 6.
     + New -dNoOutputFonts for pdfwrite and ps2write (and related).
     + New PostScript pageneutralcolor state to resolve color/grayscale.
     + pdfwrite device supports Link annotations.
     + pdfwrite device supports BMC/BDC/EMC pdfmarks.
     + New LCMS2-based color management also applies to PDF/A-1 output.
 .
   [ Jonas Smedegaard ]
   * Update copyright info:
     + Extend coverage a few places to include recent years.
     + Change main license to "AGPL-3+~Artifex".
     + Update main fonts to author "(URW)++" and license
       "AGPL-3+~Artifex with font exception".
     + Extend coverage for packaging, and relicense as GPL-3+.
     + Drop Files section for documentation files not shipped since 9.05.
     + Fix include verbatim exceptions in license section (not comment).
     + Only comment on (not formally declare) unused AFPL license.
     + Merge bogus dual-licensing of (two wording of) LGPL-2.1+.
     + Drop Files sections for excluded autotools files.
     + Fix stop bogusly list as specially licensed the files
       examples/waterfal.ps contrib/japanese/doc/gdevdmpr.txt
       toolbin/localcluster/dashboard.html.
     + Use License-Grant and License-Reference fields.
       Thanks to Ben Finney.
     + Use license short-name public-domain.
   * Update repackaging:
     + Strip convenience library trio from upstream source.
     + Strip DFSG-nonfree ETS halftone code from upstream source.
     + Strip example code lacking license.
     + Strip contributed documentation possibly lacking license.
     + Strip from repackaged upstream tarball ramfs code lacking license
       according to <http://www.ghostscript.com/irclogs/2014/05/05.html>.
     + Stop strip jasper project: not shipped since 9.07.
     + Reflect files moved from base/ to devices/.
     + Stop documenting CUPS filters dropped since 9.09.
   * Update patches:
     + Drop cherry-picked patches now included with upstream release.
     + Add patch cherry-picked upstream to sanity check for memory
       allocation.
       Closes: Bug#793489 (CVE-2015-3228). Thanks to Raphael Hertzog.
     + Add patch 2009 to not link against stripped ramfs code.
     + Unfuzz all patches.
   * Update package relations:
     + Build-depend on recent libopenjpeg-dev (not libjasper-dev):
       Support for JasPer has been dropped upstream.
     + Tighten build-dependency on liblcms2-dev: We need threads support.
     + Build-depend on libtrio-dev.
     + Tighten to build-depend on d-shlibs handling libtrio quirk.
     + Relax to build-depend unversioned on libopenjpeg-dev: Needed
       version satisified even in oldstable.
     + Relax to depend unversioned on poppler-data, and drop
       fallback-dependency on gs-cjk-resource: Needed version satisified
       even in oldstable.
     + Drop bogus/ancient fallback-build-dependency on libglut-dev.
   * Add d-shlibmove override for libtrio.
   * Add news entry about licensing change to AGPL.
     Thanks to Jonathan Nieder.
   * Update symbols file (208 new, 70 dropped).
   * Temporarily adjust source URLs for upstream pre-release.
   * Have license-check skip main HTML documentation.
   * Add lintian overrides regarding license in License-Reference field.
     See bug#786450.
   * Declare compliance with Debian Policy 3.9.6.
Checksums-Sha1:
 b59b0b6376bea724f36175063fd938910828e44e 2831 ghostscript_9.15~dfsg-1.dsc
 2d616d7ce83336c781cac62396d4a9e3616609e6 18940732 ghostscript_9.15~dfsg.orig.tar.gz
 7c98e7fe82a1393de2b48ec4d3a96164cace77f9 98056 ghostscript_9.15~dfsg-1.debian.tar.xz
 dfea443abf73bc734a4b0527b2092f7aaa8c2391 5511454 ghostscript-dbg_9.15~dfsg-1_amd64.deb
 c6b63355fa4a44d0aab3cbafd4287f8ab334f67d 4970656 ghostscript-doc_9.15~dfsg-1_all.deb
 c7b515bb83b4ad43e52e0bed8d44d8518293b2a3 85608 ghostscript-x_9.15~dfsg-1_amd64.deb
 cb03abecfba331c07a3d68ee7a64eacf09a5f610 92698 ghostscript_9.15~dfsg-1_amd64.deb
 21fbd30cb7cb9b5ba7811108541fda20494bcefb 2232240 libgs-dev_9.15~dfsg-1_amd64.deb
 58dbbc52d45df7d136949245ed44fe71e9298bb9 2137420 libgs9-common_9.15~dfsg-1_all.deb
 42ab9a4f0b7b37bcf582953e2f161c55f77c85f3 2002584 libgs9_9.15~dfsg-1_amd64.deb
Checksums-Sha256:
 b7507210e9a94378d3390046686a1b2ccc15265e7d3c01b3713997c38a23f615 2831 ghostscript_9.15~dfsg-1.dsc
 a7058c0abff52c865e963da7556b68b26667f4e5547b5c0edb954750d95bfa7a 18940732 ghostscript_9.15~dfsg.orig.tar.gz
 cdb6d3c0aff6985cc30120543c6644e84ed6eb653aa36880d585b3e8493ab063 98056 ghostscript_9.15~dfsg-1.debian.tar.xz
 76cd683db2a3b2306dc9ee94bd779d094326decaf13c39d871bd2388b5be704b 5511454 ghostscript-dbg_9.15~dfsg-1_amd64.deb
 c2fc881f587b9e2e2980a3b9e4eadb4de7be771404f57041aca5fd5fee704ca2 4970656 ghostscript-doc_9.15~dfsg-1_all.deb
 a318ff089ffc363e82d5de441b064eaf4edc8fd0d88625597e541d1495a2f920 85608 ghostscript-x_9.15~dfsg-1_amd64.deb
 3325d40c24755a874132bb4b54c5e24deb99d8ef5d9a7448b28f40b04808491e 92698 ghostscript_9.15~dfsg-1_amd64.deb
 b43e79dcbaedf3ec2e3d2174979d68bf2fd87d8ac8d4b29d938b8a7358fb6ca2 2232240 libgs-dev_9.15~dfsg-1_amd64.deb
 159177afd20751942ce511856e78e6893d6b739cf550f3f083807ce17826fc55 2137420 libgs9-common_9.15~dfsg-1_all.deb
 43185a08d6a1823ebb8fd080195a24c8b620e15353ebdfd439881d7c916c4671 2002584 libgs9_9.15~dfsg-1_amd64.deb
Files:
 a086aa7f0df9452762b10de05d9253dc 2831 text optional ghostscript_9.15~dfsg-1.dsc
 4730e901253fa1e43d1a4e33ddc07acc 18940732 text optional ghostscript_9.15~dfsg.orig.tar.gz
 2d387457e899c96c0ca39f3668525e86 98056 text optional ghostscript_9.15~dfsg-1.debian.tar.xz
 1343c2839e76865cf3db1bd41c88cf55 5511454 debug extra ghostscript-dbg_9.15~dfsg-1_amd64.deb
 e797e32b9e6f4c4eaa1624e76bbf83fb 4970656 doc optional ghostscript-doc_9.15~dfsg-1_all.deb
 5d18f04e3fefa5b9b57650fe3f86f818 85608 text optional ghostscript-x_9.15~dfsg-1_amd64.deb
 f8ec50af205d75325d09bfba2c8676e6 92698 text optional ghostscript_9.15~dfsg-1_amd64.deb
 928a27626647c8dc0cf36dc2566de0af 2232240 libdevel optional libgs-dev_9.15~dfsg-1_amd64.deb
 2dceb3ba3f869b725f3337e79aad9aca 2137420 libs optional libgs9-common_9.15~dfsg-1_all.deb
 de17faf5ee7c0871eb7873166bf17564 2002584 libs optional libgs9_9.15~dfsg-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=x9Lz
-----END PGP SIGNATURE-----

--- End Message ---
Reply to: