Secure testing team - Jun 2010 - Bug#584016: kghostview: Security bugs in ghostscript

Package: kghostview
Version: 4:3.5.9-3+lenny3
Severity: grave
Tags: security
Justification: user security hole


Please note remote execute-any-code security bugs in ghostscript:

  http://bugs.debian.org/583183

This package depends on ghostscript, and may be affected. Please
evaluate the security of this package, and fix if needed.

Thanks,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia


-- System Information:
Debian Release: 5.0.4
  APT prefers stable
  APT policy: (500, ''stable'')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages kghostview depends on:
ii  ghostscript-x    8.62.dfsg.1-3.2lenny1   The GPL Ghostscript PostScript/PDF
ii  kdelibs4c2a      4:3.5.10.dfsg.1-0lenny4 core libraries and binaries for al
ii  libc6            2.7-18lenny2            GNU C Library: Shared libraries
ii  libgcc1          1:4.3.2-1.1             GCC support library
ii  libqt3-mt        3:3.3.8b-5+b1           Qt GUI Library (Threaded runtime v
ii  libstdc++6       4.3.2-1.1               The GNU Standard C++ Library v3
ii  libx11-6         2:1.1.5-2               X11 client-side library

kghostview recommends no packages.

Versions of packages kghostview suggests:
pn  khelpcenter                   <none>     (no description available)

-- no debconf information