Debian Package Tracker

From: Lucas Kanashiro <kanashiro@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted ghostscript 9.06~dfsg-2+deb8u13 (source all amd64) into oldstable
Date: Thu, 27 Dec 2018 14:00:18 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 27 Dec 2018 13:26:27 +0000
Source: ghostscript
Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg
Architecture: source all amd64
Version: 9.06~dfsg-2+deb8u13
Distribution: jessie-security
Urgency: high
Maintainer: Debian Printing Team <debian-printing@lists.debian.org>
Changed-By: Lucas Kanashiro <kanashiro@debian.org>
Description:
 ghostscript - interpreter for the PostScript language and for PDF
 ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo
 ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati
 ghostscript-x - interpreter for the PostScript language and for PDF - X11 support
 libgs-dev  - interpreter for the PostScript language and for PDF - Development
 libgs9     - interpreter for the PostScript language and for PDF - Library
 libgs9-common - interpreter for the PostScript language and for PDF - common file
Changes:
 ghostscript (9.06~dfsg-2+deb8u13) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Debian LTS team.
   * Fix CVE-2018-19134: the setpattern operator did not properly validate certain
     types. A specially crafted PostScript document could exploit this to crash
     Ghostscript or, possibly, execute arbitrary code in the context of the Ghostscript
     process. This is a type confusion issue because of failure to check whether the
     Implementation of a pattern dictionary was a structure type.
   * Fix CVE-2018-19478: Attempting to open a carefully crafted PDF file results in
     long-running computation.
Checksums-Sha1:
 62a894400dc740c0b70a1b14b02c970243508179 2896 ghostscript_9.06~dfsg-2+deb8u13.dsc
 0599b1ceb95f6b0215c4db0031645c9f2a5f8542 18454793 ghostscript_9.06~dfsg.orig.tar.gz
 59bd1ae67d4ae4e0e7279d7cf837a95ce93b268d 152804 ghostscript_9.06~dfsg-2+deb8u13.debian.tar.xz
 cd1146b0cb1c605e2b1e55f5f54f1aad7e3b74a5 4956496 ghostscript-doc_9.06~dfsg-2+deb8u13_all.deb
 ab691c66db5a83666996d818b23c9f55b5708ec6 1972516 libgs9-common_9.06~dfsg-2+deb8u13_all.deb
 f18811adec798031b4acfea526797433c7429b5a 85788 ghostscript_9.06~dfsg-2+deb8u13_amd64.deb
 8aaa9a841f42c4aa0ada059e10dddea09591b147 77046 ghostscript-x_9.06~dfsg-2+deb8u13_amd64.deb
 6aed5385cc825f405299bc2e7e26d065a4ea7776 1919888 libgs9_9.06~dfsg-2+deb8u13_amd64.deb
 ec6a85edffb5b7b7884a443ce53359a547f124e0 2123584 libgs-dev_9.06~dfsg-2+deb8u13_amd64.deb
 3665fc611f938babe4b802061c270d748c52ce49 4884582 ghostscript-dbg_9.06~dfsg-2+deb8u13_amd64.deb
Checksums-Sha256:
 b321a0f0a38a13e663d6e6afb5f0735c6aab34805bb98103b5ffcddff8470820 2896 ghostscript_9.06~dfsg-2+deb8u13.dsc
 4a98384df28f0a1cc90943292714311ce33d600c6358c24c80e182a40592dbbf 18454793 ghostscript_9.06~dfsg.orig.tar.gz
 c074b38ac7c0eee92e91385a2a50b10350bc0a3487ec1b217238da324112d85f 152804 ghostscript_9.06~dfsg-2+deb8u13.debian.tar.xz
 5d6163336e203e64359f9db07c92be1cd00e161180547ff4824060b450538b60 4956496 ghostscript-doc_9.06~dfsg-2+deb8u13_all.deb
 eebb942ab9660adc76a62ea4c29e7a651e596de04d5fb32c0d3085d005ee9593 1972516 libgs9-common_9.06~dfsg-2+deb8u13_all.deb
 730ba714c0f6ce944bf79cc2e19fcf86428b396835f6567cc85d305fa6b5e2f8 85788 ghostscript_9.06~dfsg-2+deb8u13_amd64.deb
 76f24b966b5b328294cdbccd84347eaddb39ba278f9bb97cfd5e16fa30752168 77046 ghostscript-x_9.06~dfsg-2+deb8u13_amd64.deb
 ce5be548e6cbdddabb319cc93ea88fb84106651244b38048c56983f117e7c390 1919888 libgs9_9.06~dfsg-2+deb8u13_amd64.deb
 3b7739c59472e7406ad2fabe6c2f698924379dfbf6f63ab3bd43f433e46d4186 2123584 libgs-dev_9.06~dfsg-2+deb8u13_amd64.deb
 d114b66bdc77aa0442b043be080df4ffb8120598887dc52f953b04ace0930c67 4884582 ghostscript-dbg_9.06~dfsg-2+deb8u13_amd64.deb
Files:
 42a30c94da5201e95c5da77b49b1d2da 2896 text optional ghostscript_9.06~dfsg-2+deb8u13.dsc
 68d22f8b67369af932d9f0a396a1f63d 18454793 text optional ghostscript_9.06~dfsg.orig.tar.gz
 20dbb27b84c3bf2296c98bd8f67b6a21 152804 text optional ghostscript_9.06~dfsg-2+deb8u13.debian.tar.xz
 9bdf9115296b4c212367d529ff5fbe3d 4956496 doc optional ghostscript-doc_9.06~dfsg-2+deb8u13_all.deb
 d5b296d7e071bf3f913d3acad735a2ff 1972516 libs optional libgs9-common_9.06~dfsg-2+deb8u13_all.deb
 a4e09844f329d6761b51d418fcf46ec5 85788 text optional ghostscript_9.06~dfsg-2+deb8u13_amd64.deb
 13163c5a18d4fa580b856d1e5502135a 77046 text optional ghostscript-x_9.06~dfsg-2+deb8u13_amd64.deb
 cd8f46656b3d35305eedc5dbb5e3ea73 1919888 libs optional libgs9_9.06~dfsg-2+deb8u13_amd64.deb
 60fa51e1c65070c7945d716e2bb3ad54 2123584 libdevel optional libgs-dev_9.06~dfsg-2+deb8u13_amd64.deb
 6dd1cf7914b2b4c7a6fc82a680582469 4884582 debug extra ghostscript-dbg_9.06~dfsg-2+deb8u13_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=7qHX
-----END PGP SIGNATURE-----
News for package ghostscript
