Ghostscript: Buffer overflow
1.
Gentoo Linux Security Advisory
Version Information
| Advisory Reference |
GLSA 200803-14 / ghostscript |
| Release Date |
March 08, 2008 |
| Latest Revision |
March 08, 2008: 01 |
| Impact |
normal |
| Exploitable |
remote |
| Package |
Vulnerable versions |
Unaffected versions |
Architecture(s) |
| app-text/ghostscript-esp |
<
8.15.4-r1 |
>=
8.15.4-r1 |
All supported architectures
|
| app-text/ghostscript-gpl |
<
8.61-r3 |
>=
8.61-r3 |
All supported architectures
|
| app-text/ghostscript-gnu |
<
8.60.0-r2 |
>=
8.60.0-r2 |
All supported architectures
|
Related bugreports:
#208999
Synopsis
A stack-based buffer overflow has been discovered in Ghostscript, allowing
arbitrary code execution.
2.
Impact Information
Background
Ghostscript is a suite of software based on an interpreter for
PostScript and PDF.
Description
Chris Evans (Google Security) discovered a stack-based buffer overflow
within the zseticcspace() function in the file zicc.c when processing a
PostScript file containing a long "Range" array in a .seticcscpate
operator.
Impact
A remote attacker could exploit this vulnerability by enticing a user
to open a specially crafted PostScript file, which could possibly lead
to the execution of arbitrary code or a Denial of Service.
3.
Resolution Information
Workaround
There is no known workaround at this time.
Resolution
All Ghostscript ESP users should upgrade to the latest version:
Code Listing 3.1: Resolution |
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-text/ghostscript-esp-8.15.4-r1"
|
All Ghostscript GPL users should upgrade to the latest version:
Code Listing 3.2: Resolution |
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-text/ghostscript-gpl-8.61-r3"
|
All Ghostscript GNU users should upgrade to the latest version:
Code Listing 3.3: Resolution |
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-text/ghostscript-gnu-8.60.0-r2"
|
4.
References
|
