Paul Szabo
2010-Jun-01 01:23 UTC
[Secure-testing-team] Bug#584039: a2ps: Security bugs in ghostscript
Package: a2ps Version: 1:4.14-1 Severity: grave Tags: security Justification: user security hole Subject: Security bugs in ghostscript Please note remote execute-any-code security bugs in ghostscript: http://bugs.debian.org/583183 This package suggests ghostscript, and may be affected. Please evaluate the security of this package, and fix if needed. Thanks, Paul Szabo psz at maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of Sydney Australia -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (500, ''stable'') Architecture: i386 (i686) Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages a2ps depends on: ii file 4.26-1 Determines file type using "magic" ii libc6 2.7-18lenny2 GNU C Library: Shared libraries ii libpaper1 1.1.23+nmu1 library for handling paper charact ii psutils 1.17-26 A collection of PostScript documen Versions of packages a2ps recommends: ii bzip2 1.0.5-1 high-quality block-sorting file co pn lpr | rlpr | cupsys-client <none> (no description available) ii wdiff 0.5-18 Compares two files word by word Versions of packages a2ps suggests: ii emacsen-common 1.4.17 Common facilities for all emacsen ii ghostscript 8.62.dfsg.1-3.2lenny1 The GPL Ghostscript PostScript/PDF ii groff 1.18.1.1-21 GNU troff text-formatting system ii gv 1:3.6.5-2 PostScript and PDF viewer for X ii html2ps 1.0b5-5 HTML to PostScript converter ii imagemagick 7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs pn t1-cyrillic <none> (no description available) ii texlive-base-bi 2007.dfsg.2-4+lenny2 TeX Live: Essential binaries -- no debconf information