RHBA-2009:1257: bug fix update
75
This update has been rated as having moderate security impact by the Red Hat Security Response
Team.
Ghostscript is a set of software that provides a PostScript(TM) interpreter, a set of C procedures (the
Ghostscript library, which implements the graphics capabilities in the PostScript language) and an
interpreter for Portable Document Format (PDF) files.
Multiple integer overflow flaws which could lead to heap-based buffer overflows, as well as multiple
insufficient input validation flaws, were found in Ghostscript's International Color Consortium Format
library (icclib). Using specially-crafted ICC profiles, an attacker could create a malicious PostScript
or PDF file with embedded images which could cause Ghostscript to crash, or, potentially, execute
arbitrary code when opened by the victim. (
CVE-2009-0583
447
,
CVE-2009-0584
448
)
All users of ghostscript are advised to upgrade to these updated packages, which contain a
backported patch to correct these issues.
1.68.3. RHBA-2009:1257: bug fix update
A ghostscript update that fixes several bugs is now available.
The Ghostscript suite provides a PostScript(TM) interpreter, a set of C procedures (the Ghostscript
library, which implements the graphics capabilities in the PostScript language), and an interpreter for
PDF files. Ghostscript translates PostScript code into many common, bitmapped formats, like those
understood by most printers and displays. This enables users to display PostScript files and print them
on non-PostScript printers.
This update applies the following fixes:
• an incorrect offset computation that occurred when handling subglyphs made it possible for
ghostscript to read uninitialized data. When this occurred, ghostscript would crash with a
segmentation fault. This update corrects the offset computation, preventing ghostscript from reading
uninitialized data. (
BZ#450717
449
)
• the way that the Ghostscript source code used pointer aliasing could produce unexpected results
when strict aliasing optimizations are in use. To avoid problems, this ghostscript update was built
using the -fno-strict-aliasing option, which disables strict aliasing optimization. (
BZ#465960
450
)
• a typographical error in the gsiparam.h header file made it possible for some PDF files to cause
ghostscript to fall into an infinite loop. This update fixes the error. (
BZ#473889
451
)
• the gdevpsu.c source file incorrectly defined the point size of A3 pages, which sometimes resulted
in incorrect document page sizes. This update fixes the point size definition error , ensuring that A3
pages are always printed with the correct size. (
BZ#480978
452
)
• this update corrects how the cvrs PostScript operator performs sign extensions. This fix prevents
range errors from occurring on 64-bit platforms. (
BZ#488127
453
)
• this update also fixes ColorSpace initialization in the InkJet Server (IJS) driver, which is used by
hpijs and gimp-print drivers in some configurations. In previous releases, print jobs that did not
initialize ColorSpace failed whenever they used Ghostscript to render and print PDFs on devices
that used the ijs driver. (
BZ#504254
454
)
447
https://www.redhat.com/security/data/cve/CVE-2009-0583.html
448
https://www.redhat.com/security/data/cve/CVE-2009-0584.html
Summary of Contents for ENTERPRISE 5.4 RELEASE NOTES
Page 1: ...Red Hat Enterprise Linux 5 4 Technical Notes Every Change to Every Package ...
Page 18: ...xviii ...
Page 306: ...288 ...
Page 464: ...446 ...
Page 466: ...448 ...