espgs/ghostscript

— filed under: Security

Description

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.

New package is available for VectorLinux 5.9, we recommend to upgrade the espgs package to the latest in the testing repository.

Document Actions

Newsletter Signup: Get the latest release and security updates via email.

Releases: VL 7.1 RC1 has been released Apr 05, 2014; ETA for Vector Linux 8.0? May 28, 2013; VLOCITY 64bit FINAL is available Jul 14, 2012; VectorLinux 7.0 SOHO FINAL is released May 31, 2012; VL7.0-SOHO-RC3 is available for testing Apr 15, 2012; More…

Security: Pidgin security update May 30, 2009; Cyrus-sasl security update May 16, 2009; Xpdf security update May 16, 2009; Gnutls security update May 16, 2009; Ruby security update May 16, 2009; More…