• [SECURITY] [DSA 4972-1] ghostscript security update

    From Salvatore Bonaccorso@21:1/5 to All on Fri Sep 10 14:20:01 2021
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4972-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso September 10, 2021 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : ghostscript
    CVE ID : CVE-2021-3781
    Debian Bug : 994011

    It was discovered that Ghostscript, the GPL PostScript/PDF interpreter,
    does not properly validate access for the "%pipe%", "%handle%" and
    "%printer%" io devices, which could result in the execution of arbitrary
    code if a malformed Postscript file is processed (despite the -dSAFER
    sandbox being enabled).

    For the stable distribution (bullseye), this problem has been fixed in
    version 9.53.3~dfsg-7+deb11u1.

    We recommend that you upgrade your ghostscript packages.

    For the detailed security status of ghostscript please refer to its
    security tracker page at: https://security-tracker.debian.org/tracker/ghostscript

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmE7S9lfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0T1bBAAlHkyUnk/FVPrXIIhAjxgGCKUZnzMmb6MlXfrd6N5yg9vsIMv/upZgcSw R/x1BZGvPHnbj3KyJVijCxTldSbOV7rTL1OjeympcuVj2qzPeOHciTmPEnMdl47p MFH1y0tC/EuX4mSWFf5qTbYJpVkTDaCaSA5oIZbZbfrKFiHcZ7W+RxDaiv9hMypN C3+ClgW/FhvqiXvB49o/d9A9fwrLILVvgmNT1MVOHE68kDOJlsi04L+tOrt4EOgX SxHMYA1yJMlKaJGSUm6i36LcIbGEOyyc8eAT8NsT7TQELFbXB9i6BKNF5go7pmtr rWuiJPs8Z29Yuo4ENO4cZPNhoS1h1KEs0XNACMWyDjdUHhAsuHto6xf0P3Q0Brn1 7kwauVIrHvaY/3CWCsof5FROFV9w7J48OU5BjUaHXA4j7sQAcEOSyIzlU4DSc2FU yEWZMciW/E5kosQwnYNDq/H9YvQOQhPcsF18jQtGkj8a2AN76dcDywoGTfD/yFuC 1l1vZv1N/ciblbVZH6+10AEV4emIe651UCMqBUqZmJgqTRDj2kOvq+QLa9+TGGHT uoiSbIiCVqbeJzxI2za3hAoFYBinxxl+/HsMyLAYqJeZkBM8K1KS0S+bRTd0QpYE o5XQswYsh4UaJ3nJpbdqc53CIm3A1FJlQMZ1Kyqr6XTOO2vmbaw=
    =fymu
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)