Home page logo

fulldisclosure logo Full Disclosure mailing list archives

rPSA-2009-0050-1 ghostscript
From: rPath Update Announcements <announce-noreply () rpath com>
Date: Thu, 19 Mar 2009 15:52:09 -0400

rPath Security Advisory: 2009-0050-1
Published: 2009-03-19
    rPath Linux 2

Rating: Minor
Exposure Level Classification:
    Indirect Deterministic Vulnerability
Updated Versions:
    ghostscript=conary.rpath.com () rpl:devel/8.61-2.1-1

rPath Issue Tracking System:


    Previous versions of Ghostscript are potentially vulnerable to
    context-dependent attacks via integer overflows and missing upper
    bounds checks in Ghostscript's ICC library causing application
    crashes or even arbitrary code execution.


Copyright 2009 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • rPSA-2009-0050-1 ghostscript rPath Update Announcements (Mar 20)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]