Secure testing team - Jun 2010 - Bug#584013: hyperlatex: Security bugs in ghostscript

Package: hyperlatex
Severity: grave
Tags: security
Justification: user security hole


Please note remote execute-any-code security bugs in ghostscript:

  http://bugs.debian.org/583183

This package depends on ghostscript, and may be affected. Please
evaluate the security of this package, and fix if needed.

Thanks,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia


-- System Information:
Debian Release: 5.0.4
  APT prefers stable
  APT policy: (500, ''stable'')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages hyperlatex depends on:
ii  emacs21 [emacsen]            21.4a+1-5.6 The GNU Emacs editor
ii  emacs22-gtk [emacsen]        22.2+2-5    The GNU Emacs editor (with GTK use
ii  xemacs21-mule [emacsen]      21.4.21-4   highly customizable text editor --
ii  xemacs21-mule-canna-wnn [ema 21.4.21-4   highly customizable text editor --

Versions of packages hyperlatex recommends:
ii  ghostscript-x [gs] 8.62.dfsg.1-3.2lenny1 The GPL Ghostscript PostScript/PDF
ii  gs                 8.62.dfsg.1-3.2lenny1 Transitional package
ii  tetex-bin          2007.dfsg.2-1~lenny2  TeX Live: teTeX transitional packa

Versions of packages hyperlatex suggests:
pn  giftrans                <none>           (no description available)
ii  netpbm                  2:10.0-12+lenny1 Graphics conversion tools