[Secure-testing-team] Bug#584035: webmagick: Security bugs in ghostscript
Paul Szabo
paul.szabo at sydney.edu.au
Tue Jun 1 01:19:20 UTC 2010
Package: webmagick
Severity: grave
Tags: security
Justification: user security hole
Please note remote execute-any-code security bugs in ghostscript:
http://bugs.debian.org/583183
This package depends on ghostscript, and may be affected. Please
evaluate the security of this package, and fix if needed.
Thanks,
Paul Szabo psz at maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia
-- System Information:
Debian Release: 5.0.4
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages webmagick depends on:
ii ghostscript-x 8.62.dfsg.1-3.2lenny1 The GPL Ghostscript PostScript/PDF
ii gs 8.62.dfsg.1-3.2lenny1 Transitional package
ii gsfonts 1:8.11+urwcyr1.0.7~pre44-3 Fonts for the Ghostscript interpre
ii imagemagick 7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs
ii perl 5.10.0-19lenny2 Larry Wall's Practical Extraction
ii perlmagick 7:6.3.7.9.dfsg2-1~lenny3 Perl interface to the libMagick gr
webmagick recommends no packages.
webmagick suggests no packages.
More information about the Secure-testing-team
mailing list