From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-2080-1
[email protected] http://www.debian.org/security/ Moritz Muehlenhoff
August 01, 2010
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : ghostscript
Vulnerability : several
Problem type : local(remote)
Debian-specific: no
CVE Id(s) : CVE-2007-6725 CVE-2008-3522 CVE-2008-6679 CVE-2009-0196 CVE-2009-0792 CVE-2009-4270 CVE-2010-1869
Several security issues have been discovered in Ghostscript, the GPL PostScript/PDF interpreter, which might lead to the execution of
arbitrary code if a user processes a malformed PDF or Postscript file.
For the stable distribution (lenny), these problems have been fixed in
version 8.62.dfsg.1-3.2lenny4.
For the unstable distribution (sid), these problems have been fixed in
version 8.71~dfsg-4.
We recommend that you upgrade your ghostscript packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny4.diff.gz
Size/MD5 checksum: 104592 c1f5f4ee971ea44f4b0cef7488fea58a
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny2.diff.gz
Size/MD5 checksum: 104465 712a48aa6a1a28c2800ee3a950f24c93
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1.orig.tar.gz
Size/MD5 checksum: 12212309 42fc1b31aa745c3765c2fcd2da243236
Architecture independent packages:
http://security.debian.org/pool/updates/main/g/ghostscript/gs-gpl_8.62.dfsg.1-3.2lenny4_all.deb
Size/MD5 checksum: 28702 dcf8382cede0279d2ced25016b5d63b0
http://security.debian.org/pool/updates/main/g/ghostscript/gs-aladdin_8.62.dfsg.1-3.2lenny4_all.deb
Size/MD5 checksum: 28704 a62393cb1d1449c44398279e40804a20
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-doc_8.62.dfsg.1-3.2lenny4_all.deb
Size/MD5 checksum: 2784654 379db3cc220700a5320c0f3505ec6185
http://security.debian.org/pool/updates/main/g/ghostscript/gs_8.62.dfsg.1-3.2lenny4_all.deb
Size/MD5 checksum: 28692 f327874c01d90518ae69cc746ae8c245
http://security.debian.org/pool/updates/main/g/ghostscript/gs-common_8.62.dfsg.1-3.2lenny4_all.deb
Size/MD5 checksum: 28902 d790c6a598e425e86655613e3d842feb
http://security.debian.org/pool/updates/main/g/ghostscript/gs-esp_8.62.dfsg.1-3.2lenny4_all.deb
Size/MD5 checksum: 28696 6e1b2ffd61b41b2210c80035fa1c18d2
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny4_alpha.deb
Size/MD5 checksum: 66154 af55aa7bcd5471ef673c0c5f5fddf693
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny4_alpha.deb
Size/MD5 checksum: 36444 e2e1d7dbf80456743f43c063ddd31d2a
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny4_alpha.deb
Size/MD5 checksum: 797568 50220131de97010d530c84e4685b9ba3
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny4_alpha.deb
Size/MD5 checksum: 2629590 bf6713489c1974a68e72244cd0ab313e
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny4_amd64.deb
Size/MD5 checksum: 63102 b381fcd9f08a512ec234aefc4db55e6d
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny4_amd64.deb
Size/MD5 checksum: 794264 1d6aa96ecda1cc3caaee6e02ec8131d0
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny4_amd64.deb
Size/MD5 checksum: 36296 1c234970f6695e233c98f6c8b17a228d
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny4_amd64.deb
Size/MD5 checksum: 2322612 ff18916f3e0b984520dc6a65a1850545
arm architecture (ARM)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny4_arm.deb
Size/MD5 checksum: 59898 691db1eafdbb597550e41936a588dc2e
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny4_arm.deb
Size/MD5 checksum: 2179214 fce17c2014ef0633694921ff7a2dbbf6
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny4_arm.deb
Size/MD5 checksum: 34898 94bfb293db43933b96defcc65c2ce1e4
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny4_arm.deb
Size/MD5 checksum: 796618 133283cd0ce5ad2ddfb180149dd1cdde
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny4_armel.deb
Size/MD5 checksum: 797658 bfee3d7ee43ecf42c762f707e15be417
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny4_armel.deb
Size/MD5 checksum: 63604 ba4c4769c7a604e1cbd65e42d4a20308
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny4_armel.deb
Size/MD5 checksum: 2214322 659428a1eb467fd459a8a10ac6e57f53
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny4_armel.deb
Size/MD5 checksum: 36442 59d91a5b9a24bec78946a5e01345589b
hppa architecture (HP PA RISC)
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)