[Secure-testing-team] Bug#584034: texmacs: Security bugs in ghostscript

Paul Szabo paul.szabo at sydney.edu.au
Tue Jun 1 01:19:02 UTC 2010 

Package: texmacs
Version: 1:1.0.6.14-1
Severity: grave
Tags: security
Justification: user security hole


Please note remote execute-any-code security bugs in ghostscript:

  http://bugs.debian.org/583183

This package depends on ghostscript, and may be affected. Please
evaluate the security of this package, and fix if needed.

Thanks,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia


-- System Information:
Debian Release: 5.0.4
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages texmacs depends on:
ii  findutils         4.4.0-2                utilities for finding files--find,
ii  ghostscript-x [gs 8.62.dfsg.1-3.2lenny1  The GPL Ghostscript PostScript/PDF
ii  groff             1.18.1.1-21            GNU troff text-formatting system
ii  gs-gpl            8.62.dfsg.1-3.2lenny1  Transitional package
ii  guile-1.8-libs    1.8.5+1-4.1            Main Guile libraries
ii  libc6             2.7-18lenny2           GNU C Library: Shared libraries
ii  libfreetype6      2.3.7-2+lenny1         FreeType 2 font engine, shared lib
ii  libgcc1           1:4.3.2-1.1            GCC support library
ii  libgmp3c2         2:4.2.2+dfsg-3         Multiprecision arithmetic library
ii  libltdl3          1.5.26-4+lenny1        A system independent dlopen wrappe
ii  libstdc++6        4.3.2-1.1              The GNU Standard C++ Library v3
ii  libx11-6          2:1.1.5-2              X11 client-side library
ii  libxext6          2:1.0.4-1              X11 miscellaneous extension librar
ii  locate            4.4.0-2                maintain and query an index of a d
ii  texlive-base      2007.dfsg.2-1~lenny2   TeX Live: Essential programs and f
ii  texlive-extra-uti 2007.dfsg.2-4+lenny2   TeX Live: TeX auxiliary programs
ii  texlive-font-util 2007.dfsg.2-4+lenny2   TeX Live: TeX font-related program
ii  texlive-math-extr 2007.dfsg.17-1~lenny02 TeX Live: Advanced math typesettin
ii  texmacs-common    1:1.0.6.14-1           WYSIWYG mathematical text editor u
ii  xbase-clients     1:7.3+20               miscellaneous X clients - metapack
ii  zlib1g            1:1.2.3.3.dfsg-12      compression library - runtime

Versions of packages texmacs recommends:
ii  imagemagick     7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs
ii  ispell          3.1.20.0-4.4             International Ispell (an interacti
ii  libjpeg-progs   6b-14                    Programs for manipulating JPEG fil
ii  librsvg2-bin    2.22.2-2lenny1           command-line and graphical viewers
ii  libtiff-tools   3.8.2-11.2               TIFF manipulation and conversion t
ii  netpbm          2:10.0-12+lenny1         Graphics conversion tools
ii  texmacs-extra-f 0.2                      extra fonts for the mathematical t
ii  xfig            1:3.2.5-rel-3            Facility for Interactive Generatio

Versions of packages texmacs suggests:
ii  python                   2.5.2-3         An interactive high-level object-o
ii  wget                     1.11.4-2+lenny1 retrieves files from the web

-- no debconf information

More information about the Secure-testing-team mailing list