[Secure-testing-team] Bug#584040: apsfilter: Security bugs in ghostscript

Paul Szabo paul.szabo at sydney.edu.au
Tue Jun 1 01:24:06 UTC 2010 

Package: apsfilter
Severity: grave
Tags: security
Justification: user security hole


Subject: Security bugs in ghostscript

Please note remote execute-any-code security bugs in ghostscript:

  http://bugs.debian.org/583183

This package suggests ghostscript, and may be affected. Please
evaluate the security of this package, and fix if needed.

Thanks,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia


-- System Information:
Debian Release: 5.0.4
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages apsfilter depends on:
ii  debconf                 1.5.24           Debian configuration management sy
ii  file                    4.26-1           Determines file type using "magic"
ii  gawk [awk]              1:3.1.5.dfsg-4.1 GNU awk, a pattern scanning and pr
pn  lpr                     <none>           (no description available)
ii  mawk [awk]              1.3.3-11.1       a pattern scanning and text proces

Versions of packages apsfilter recommends:
ii  a2ps                          1:4.14-1   GNU a2ps - 'Anything to PostScript
ii  enscript                      1.6.4-13   Converts ASCII text to Postscript,
ii  mpage                         2.5.4-2    print multiple pages per sheet on 

Versions of packages apsfilter suggests:
ii  bzip2           1.0.5-1                  high-quality block-sorting file co
pn  dvips           <none>                   (no description available)
ii  ghostscript-x [ 8.62.dfsg.1-3.2lenny1    The GPL Ghostscript PostScript/PDF
ii  groff           1.18.1.1-21              GNU troff text-formatting system
ii  gs              8.62.dfsg.1-3.2lenny1    Transitional package
ii  html2ps         1.0b5-5                  HTML to PostScript converter
ii  imagemagick     7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs
ii  libjpeg-progs   6b-14                    Programs for manipulating JPEG fil
ii  netpbm          2:10.0-12+lenny1         Graphics conversion tools
pn  pnm2ppa         <none>                   (no description available)
ii  psutils         1.17-26                  A collection of PostScript documen
pn  sketch          <none>                   (no description available)
ii  transfig        1:3.2.5-rel-3.1          Utilities for converting XFig figu

More information about the Secure-testing-team mailing list