thr3ads.net - Secure testing team - [Secure-testing-team] Bug#584046: efax: Security bugs in ghostscript [Jun 2010]

If this information is useful, please help other people find it:
Share via:

Paul Szabo

2010-Jun-01 01:26 UTC

[Secure-testing-team] Bug#584046: efax: Security bugs in ghostscript

Package: efax
Severity: grave
Tags: security
Justification: user security hole


Subject: Security bugs in ghostscript

Please note remote execute-any-code security bugs in ghostscript:

  http://bugs.debian.org/583183

This package suggests ghostscript, and may be affected. Please
evaluate the security of this package, and fix if needed.

Thanks,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia


-- System Information:
Debian Release: 5.0.4
  APT prefers stable
  APT policy: (500, ''stable'')
Architecture: i386 (i686)

Kernel: Linux 2.6.26-pk03.17-svr (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages efax depends on:
ii  debconf                     1.5.24       Debian configuration management sy
ii  libc6                       2.7-18lenny2 GNU C Library: Shared libraries
ii  libpaper1 [libpaperg]       1.1.23+nmu1  library for handling paper charact
ii  make                        3.81-5       The GNU version of the
"make" util

efax recommends no packages.

Versions of packages efax suggests:
ii  ghostscript-x [ 8.62.dfsg.1-3.2lenny1    The GPL Ghostscript PostScript/PDF
ii  gs              8.62.dfsg.1-3.2lenny1    Transitional package
ii  imagemagick     7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs

Secure testing team - Jun 2010 - Bug#584046: efax: Security bugs in ghostscript

[Secure-testing-team] Bug#584046: efax: Security bugs in ghostscript