espgs/ghostscript

— filed under: Security

Description

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.

New package is available for VectorLinux 5.9, we recommend to upgrade the espgs package to the latest in the testing repository.

Document Actions

Newsletter Signup: Get the latest release and security updates via email.

Releases: VLOCITY 64bit FINAL is available Jul 14, 2012; VectorLinux 7.0 SOHO FINAL is released May 31, 2012; VL7.0-SOHO-RC3 is available for testing Apr 15, 2012; Vector Linux 7.0 Light released. Mar 20, 2012; Vector Linux 7.0 Light RC1 released. Feb 21, 2012; More…

Security: Pidgin security update May 30, 2009; Cyrus-sasl security update May 16, 2009; Xpdf security update May 16, 2009; Gnutls security update May 16, 2009; Ruby security update May 16, 2009; More…