-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 14 Mar 2009 12:57:49 +0000 Source: ghostscript Binary: ghostscript gs gs-esp gs-gpl gs-aladdin gs-common ghostscript-x ghostscript-doc libgs8 libgs-dev Architecture: source all i386 Version: 8.62.dfsg.1-3.2lenny1 Distribution: stable-security Urgency: high Maintainer: Masayuki Hatta (mhatta) <mhatta@debian.org> Changed-By: Steffen Joeris <white@debian.org> Description: ghostscript - The GPL Ghostscript PostScript/PDF interpreter ghostscript-doc - The GPL Ghostscript PostScript/PDF interpreter - Documentation ghostscript-x - The GPL Ghostscript PostScript/PDF interpreter - X Display suppor gs - Transitional package gs-aladdin - Transitional package gs-common - Dummy package depending on ghostscript gs-esp - Transitional package gs-gpl - Transitional package libgs-dev - The Ghostscript PostScript Library - Development Files libgs8 - The Ghostscript PostScript/PDF interpreter Library Changes: ghostscript (8.62.dfsg.1-3.2lenny1) stable-security; urgency=high . * Non-maintainer upload by the security team * Include patch from RedHat to fix several integer overflows and add upper-bound checks on certain variables in the embedded icc library Fixes: CVE-2009-0583 CVE-2009-0584 Checksums-Sha1: ab2d7b3f9744d1ec1f2dd7b2adbcedcdc8cc7c8d 1535 ghostscript_8.62.dfsg.1-3.2lenny1.dsc e087049e9de7f23b6330e72db9c67a74cd8620df 12212309 ghostscript_8.62.dfsg.1.orig.tar.gz a76178b18bdacf02626f14de0cab838b9091c451 100462 ghostscript_8.62.dfsg.1-3.2lenny1.diff.gz 386fad983b5f9388609f12a6df585cb8331bdba4 28512 gs_8.62.dfsg.1-3.2lenny1_all.deb eb8e75cb633817ac1c4219f7cf16f357042d364a 28514 gs-esp_8.62.dfsg.1-3.2lenny1_all.deb 6db59440b810dad14d6edd0012a7fa0fe2b3e1d3 28514 gs-gpl_8.62.dfsg.1-3.2lenny1_all.deb 0a347d54279321431125468420efcb07637dd9c7 28522 gs-aladdin_8.62.dfsg.1-3.2lenny1_all.deb 0626e688c6edcac2cad8bda6ab2e98999e5b74d8 28726 gs-common_8.62.dfsg.1-3.2lenny1_all.deb a6fa2ab6cdd0ba94d989c6fc78ea0b1c9a3113fd 2790286 ghostscript-doc_8.62.dfsg.1-3.2lenny1_all.deb b5318276bfa1dbc23949ebe21e59f15e448496ac 797038 ghostscript_8.62.dfsg.1-3.2lenny1_i386.deb 90eb69de303e29657515a0ecf621e65cca02ecde 60650 ghostscript-x_8.62.dfsg.1-3.2lenny1_i386.deb 427a20f1c8079cc3b3bd62889fe879d404260b30 2221498 libgs8_8.62.dfsg.1-3.2lenny1_i386.deb 5d4a1514e1a6d7e4cd49717baf38224318ed3a99 36130 libgs-dev_8.62.dfsg.1-3.2lenny1_i386.deb Checksums-Sha256: 6d304e49752ff2597466b1b8291cc5da3950bfbdf96987c04f6b42ebea77a0b4 1535 ghostscript_8.62.dfsg.1-3.2lenny1.dsc 896b8c25aedc5e8f557d93c1d4e1da6a8cdcba1e6685f2b0d3adb3dbed219883 12212309 ghostscript_8.62.dfsg.1.orig.tar.gz 56ff84d3e8aaa58f5421e46e0be8dc15b3042aca5a833d67b7a2c8dac1720334 100462 ghostscript_8.62.dfsg.1-3.2lenny1.diff.gz 5512b7ea637dae36c4b3860366d414249d94554780804fff3fcafcfb6b75726d 28512 gs_8.62.dfsg.1-3.2lenny1_all.deb acaeb5b71182462ab7421795a7e8e91e22f15bb0e2c087b30243752940f7c81d 28514 gs-esp_8.62.dfsg.1-3.2lenny1_all.deb 543bb0cfb726215e7e6ab35a559efa31b0d7976949cfda1adabfe57a1a511abb 28514 gs-gpl_8.62.dfsg.1-3.2lenny1_all.deb d3a04cc6b56b18dbd6ab2a741d396c08b02f26a530f87aaa307ff0a167933a53 28522 gs-aladdin_8.62.dfsg.1-3.2lenny1_all.deb 35a0d873b831d83773d4f06676e6523c98b5ef5be1d515b4860d166921ebeb16 28726 gs-common_8.62.dfsg.1-3.2lenny1_all.deb e9cebbb9cd75a9dd91b3b42b955bfdff638d2dfe4ad238e422d0fc4f7f1dd375 2790286 ghostscript-doc_8.62.dfsg.1-3.2lenny1_all.deb ccf9b05f98e1d1229977fe3a2a1a0b06d527855cd1abddb673c959bf8554c6d7 797038 ghostscript_8.62.dfsg.1-3.2lenny1_i386.deb 5c795a66f903f8458fa0899347ad9b1326b259b64769266e046990709d5d5e53 60650 ghostscript-x_8.62.dfsg.1-3.2lenny1_i386.deb 37daffbff5406232f00243d37ffe08c09d6598e150a398b286b041f6534b32be 2221498 libgs8_8.62.dfsg.1-3.2lenny1_i386.deb 24d5dd8df2904dccd1f27c6d694747aef83920caffff97aec4b30ce2f37f7177 36130 libgs-dev_8.62.dfsg.1-3.2lenny1_i386.deb Files: 2f2559433a5e6996e514dafcca7dd69c 1535 text optional ghostscript_8.62.dfsg.1-3.2lenny1.dsc 42fc1b31aa745c3765c2fcd2da243236 12212309 text optional ghostscript_8.62.dfsg.1.orig.tar.gz 83f637fa1b723157588d60b00a6b3a24 100462 text optional ghostscript_8.62.dfsg.1-3.2lenny1.diff.gz ade6aa8af31b6bac6c452ea151db60b8 28512 text extra gs_8.62.dfsg.1-3.2lenny1_all.deb 539902aa120256407c4d8e865b1c5904 28514 text extra gs-esp_8.62.dfsg.1-3.2lenny1_all.deb cb5278471b25206d79427cabc4ce2ea3 28514 text extra gs-gpl_8.62.dfsg.1-3.2lenny1_all.deb 9443d3a57981788d7c307ecd77f7ab1c 28522 text extra gs-aladdin_8.62.dfsg.1-3.2lenny1_all.deb 10ba84f9f9385457a238ed77d89ed5c1 28726 text optional gs-common_8.62.dfsg.1-3.2lenny1_all.deb 6c42b8804fe67c08afac4844c132c885 2790286 doc optional ghostscript-doc_8.62.dfsg.1-3.2lenny1_all.deb 2b334a1592e6b8c41803a3dd350ef514 797038 text optional ghostscript_8.62.dfsg.1-3.2lenny1_i386.deb 09929bd54215e145ccbb400bd5fd64b4 60650 text optional ghostscript-x_8.62.dfsg.1-3.2lenny1_i386.deb bf1da8385d836970119e02ee8ba2679d 2221498 libs optional libgs8_8.62.dfsg.1-3.2lenny1_i386.deb ae0ac01db0c9d94dcaafd66891a19fcd 36130 libdevel optional libgs-dev_8.62.dfsg.1-3.2lenny1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkm7tc4ACgkQ62zWxYk/rQfmxwCfc9gRtIS0OTF3I8eyPwpzTi3m ZOMAoKoq1ITWh1YGTYH2wonXNFD1SL8M =aA6K -----END PGP SIGNATURE----- Accepted: ghostscript-doc_8.62.dfsg.1-3.2lenny1_all.deb to pool/main/g/ghostscript/ghostscript-doc_8.62.dfsg.1-3.2lenny1_all.deb ghostscript-x_8.62.dfsg.1-3.2lenny1_i386.deb to pool/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_i386.deb ghostscript_8.62.dfsg.1-3.2lenny1.diff.gz to pool/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1.diff.gz ghostscript_8.62.dfsg.1-3.2lenny1.dsc to pool/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1.dsc ghostscript_8.62.dfsg.1-3.2lenny1_i386.deb to pool/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_i386.deb gs-aladdin_8.62.dfsg.1-3.2lenny1_all.deb to pool/main/g/ghostscript/gs-aladdin_8.62.dfsg.1-3.2lenny1_all.deb gs-common_8.62.dfsg.1-3.2lenny1_all.deb to pool/main/g/ghostscript/gs-common_8.62.dfsg.1-3.2lenny1_all.deb gs-esp_8.62.dfsg.1-3.2lenny1_all.deb to pool/main/g/ghostscript/gs-esp_8.62.dfsg.1-3.2lenny1_all.deb gs-gpl_8.62.dfsg.1-3.2lenny1_all.deb to pool/main/g/ghostscript/gs-gpl_8.62.dfsg.1-3.2lenny1_all.deb gs_8.62.dfsg.1-3.2lenny1_all.deb to pool/main/g/ghostscript/gs_8.62.dfsg.1-3.2lenny1_all.deb libgs-dev_8.62.dfsg.1-3.2lenny1_i386.deb to pool/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_i386.deb libgs8_8.62.dfsg.1-3.2lenny1_i386.deb to pool/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_i386.deb