Re: Bug#583634: evince: Insecure ghostscript invocation

To: Paul Szabo <paul.szabo@sydney.edu.au>, 583634@bugs.debian.org
Cc: Debian Krap Maintainers <debian-qt-kde@lists.debian.org>
Subject: Re: Bug#583634: evince: Insecure ghostscript invocation
From: Josselin Mouette <joss@debian.org>
Date: Sat, 29 May 2010 11:06:43 +0200
Message-id: <[🔎] 1275124003.28113.7.camel@tomoyo>
In-reply-to: <20100529015559.20683.91615.reportbug@bari.maths.usyd.edu.au>
References: <20100529015559.20683.91615.reportbug@bari.maths.usyd.edu.au>

reassign 583634 libspectre1 0.2.0.ds-1
thanks

Le samedi 29 mai 2010 à 11:55 +1000, Paul Szabo a écrit :
> Please see
>   http://bugs.debian.org/583183
> for details: evince seems to use ghostscript in an insecure way
> when viewing PS files.

Thanks for your report. Both evince and okular rely on libspectre for gs
invocation, so this should be fixed there.

Cheers,
-- 
 .''`.      Josselin Mouette
: :' :
`. `'  “If you behave this way because you are blackmailed by someone,
  `-    […] I will see what I can do for you.”  -- Jörg Schilling

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Processed: Re: Bug#583634: evince: Insecure ghostscript invocation
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: libdbusmenu-qt_0.3.2-1_amd64.changes ACCEPTED
Next by Date: Processed: Re: Bug#583634: evince: Insecure ghostscript invocation
Previous by thread: libdbusmenu-qt_0.3.2-1_amd64.changes ACCEPTED
Next by thread: Processed: Re: Bug#583634: evince: Insecure ghostscript invocation
Index(es):
- Date
- Thread