Bug#839845: ghostscript: reference leak in .setdevice allows use-after-free and remote code execution

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#839845: ghostscript: reference leak in .setdevice allows use-after-free and remote code execution
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 05 Oct 2016 19:35:28 +0200
Message-id: <[🔎] 147568892851.18224.4955298460105879755.reportbug@eldamar.local>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 839845@bugs.debian.org

Source: ghostscript
Version: 9.19~dfsg-3
Severity: grave
Tags: security upstream
Forwarded: http://bugs.ghostscript.com/show_bug.cgi?id=697179

Hi

See:

Upstream bug: http://bugs.ghostscript.com/show_bug.cgi?id=697179
Reproducer: http://bugs.ghostscript.com/show_bug.cgi?id=697179#c0
Patch: http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;a=commitdiff;h=d5ad1e02
CVE Request: http://www.openwall.com/lists/oss-security/2016/10/05/7

Regards,
Salvatore

Reply to:

Follow-Ups:
- Bug#839845: marked as done (ghostscript: CVE-2016-7978: reference leak in .setdevice allows use-after-free and remote code execution)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)
- Processed: ghostscript: diff for NMU version 9.19~dfsg-3.1
  - From: owner@bugs.debian.org (Debian Bug Tracking System)
- Bug#839845: marked as done (ghostscript: CVE-2016-7978: reference leak in .setdevice allows use-after-free and remote code execution)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Processed: Re: Bug#839260: ghostscript: various sandbox bypasses
Next by Date: Bug#839846: ghostscript: type confusion in .initialize_dsc_parser allows remote code execution
Previous by thread: Processed: Re: Bug#839260: ghostscript: various sandbox bypasses
Next by thread: Bug#839845: marked as done (ghostscript: CVE-2016-7978: reference leak in .setdevice allows use-after-free and remote code execution)
Index(es):
- Date
- Thread