|
|
Log in / Subscribe / Register

Debian alert DLA-1048-1 (ghostscript)



From:
    	      Markus Koschany <apo@debian.org> 


To:
    	      debian-lts-announce@lists.debian.org 


Subject:
    	      [SECURITY] [DLA 1048-1] ghostscript security update 


Date:
    	      Tue, 1 Aug 2017 14:41:37 +0200


Message-ID:
    	      <35f8df78-d211-4663-e2b8-5c5fe7d8d449@debian.org>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : ghostscript
Version        : 9.05~dfsg-6.3+deb7u7
CVE ID         : CVE-2017-7207 CVE-2017-9611 CVE-2017-9612
                 CVE-2017-9726 CVE-2017-9727 CVE-2017-9739
                 CVE-2017-9835 CVE-2017-11714
Debian Bug     : 858350 869977 869907 869910 869913 869915 869916 869917

Several issues were found in Ghostscript, the GPL PostScript/PDF
interpreter, which allow remote attackers to cause a denial of service
(heap-based buffer overflow and application crash) or possibly have
unspecified other impact via a crafted PostScript document.

For Debian 7 "Wheezy", these problems have been fixed in version
9.05~dfsg-6.3+deb7u7.

We recommend that you upgrade your ghostscript packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=TRY0
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds