Bug#584064: texlive-base-bin: Security bugs in ghostscript

To: preining@logic.at
Cc: 584064@bugs.debian.org
Subject: Bug#584064: texlive-base-bin: Security bugs in ghostscript
From: paul.szabo@sydney.edu.au
Date: Tue, 1 Jun 2010 12:54:15 +1000
Message-id: <[🔎] 201006010254.o512sFoZ016329@bari.maths.usyd.edu.au>
Reply-to: paul.szabo@sydney.edu.au, 584064@bugs.debian.org
In-reply-to: <[🔎] 20100601024217.GB4115@gamma.logic.tuwien.ac.at>

Dear Norbert,

> That is right, but still it is a bug of ghostscript and should
> be treated there, not anywhere else.

Yes. And when they advise you to use -P- (and refuse to make that the
default), you just need to follow: you need to change. (But yes, such
a gs requirement, leaving it "insecure by default", is insane.)

I note that right now, gs is unsafe even with -P-.

> Furthermore, gs is not run with extended priviliges, so that
> does not compromise the system unless the cups code is forwarding
> that to gs.

Only affects the users of cups: all user accounts are now compromised.
I also guess that cups may be used for printing... I do not know whether
that runs as root (compromising the whole machine) or as user "printer"
(allowing attackers to "steal" sensitive printouts).

Cheers, Paul

Paul Szabo   psz@maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia

Reply to:

References:
- Bug#584064: texlive-base-bin: Security bugs in ghostscript
  - From: Norbert Preining <preining@logic.at>

Prev by Date: Bug#584064: texlive-base-bin: Security bugs in ghostscript
Next by Date: Bug#584191: texinfo: texi2dvi fails fails with absolute path and non-C locale
Previous by thread: Bug#584064: texlive-base-bin: Security bugs in ghostscript
Next by thread: Bug#584191: texinfo: texi2dvi fails fails with absolute path and non-C locale
Index(es):
- Date
- Thread