| From the Red Hat bugzilla:
a deficiency in the way gv handled temporary file creation,
when used for opening Portable Document Format (PDF) files.
A local attacker could use this flaw to conduct symlink attacks,
potentially leading to denial of service (un-athorized overwrite
of file content). (CVE-2010-2056)
From the Red Hat bugzilla:
A security flaw was found in the way gs handled its initialization:
1, certain files in current working directory were honored at startup,
2, explicit use of "-P-" command line option, did not prevent
ghostscript from execution of PostScript commands, contained
within "gs_init.ps" file.
A local attacker could use this flaw to execute arbitrary PostScript
commands, if the victim was tricked into opening a PostScript file
in the directory of attacker's intent. (CVE-2010-2055)
| 