Bug#869879: ghostscript: CVE-2017-9610 CVE-2017-9618 CVE-2017-9619 CVE-2017-9620 CVE-2017-9740

Source: ghostscript Version: 9.21~dfsg-1 Severity: normal Tags: security patch upstream Hi, the following vulnerabilities were published for ghostscript. Note, I'm collecting those in one bug, because they are currently unimportant for Debian as xps/ not used during build. But it would be nice to

Bug#869907: ghostscript: CVE-2017-9835: heap-buffer-overflow in gs_alloc_ref_array(ialloc.c)

Source: ghostscript Version: 9.21~dfsg-1 Severity: important Tags: security patch upstream fixed-upstream Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=697985 Hi, the following vulnerability was published for ghostscript. CVE-2017-9835[0]: | The gs_alloc_ref_array function in psi/iallo

Processed: found 869907 in 9.06~dfsg-1

Processing commands for cont...@bugs.debian.org: > found 869907 9.06~dfsg-1 Bug #869907 [src:ghostscript] ghostscript: CVE-2017-9835: heap-buffer-overflow in gs_alloc_ref_array(ialloc.c) Marked as found in versions ghostscript/9.06~dfsg-1. > thanks Stopping processing here. Please contact me if

Bug#869910: ghostscript: CVE-2017-9739: heap-buffer-overflow in Ins_JMPR

Source: ghostscript Version: 9.06~dfsg-1 Severity: important Tags: security patch upstream fixed-upstream Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=698063 Hi, the following vulnerability was published for ghostscript. CVE-2017-9739[0]: | The Ins_JMPR function in base/ttinterp.c in

Bug#869913: ghostscript: CVE-2017-9727: heap-buffer-overflow in gx_ttfReader__Read(base/gxttfb.c)

Source: ghostscript Version: 9.06~dfsg-2 Severity: important Tags: upstream patch security fixed-upstream Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=698056 Hi, the following vulnerability was published for ghostscript. CVE-2017-9727[0]: | The gx_ttfReader__Read function in base/gxtt

Bug#869915: ghostscript: CVE-2017-9726: heap-use-after-free in Ins_MDRP(base/ttinterp.c)

Source: ghostscript Version: 9.06~dfsg-2 Severity: important Tags: upstream security patch fixed-upstream Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=698055 Hi, the following vulnerability was published for ghostscript. CVE-2017-9726[0]: | The Ins_MDRP function in base/ttinterp.c in

Bug#869917: ghostscript: CVE-2017-9611: heap-buffer-overflow in Ins_MIRP(base/ttinterp.c)

Source: ghostscript Version: 9.06~dfsg-2 Severity: important Tags: security upstream patch fixed-upstream Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=698024 Hi, the following vulnerability was published for ghostscript. CVE-2017-9611[0]: | The Ins_MIRP function in base/ttinterp.c in

Bug#869916: ghostscript: CVE-2017-9612: heap-use-after-free in Ins_IP(base/ttinterp.c)

Source: ghostscript Version: 9.06~dfsg-2 Severity: important Tags: patch security upstream fixed-upstream Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=698026 Hi, the following vulnerability was published for ghostscript. CVE-2017-9612[0]: | The Ins_IP function in base/ttinterp.c in Ar

Processed: severity of 869907 is grave, severity of 869910 is grave, severity of 869913 is grave ...

Processing commands for cont...@bugs.debian.org: > severity 869907 grave Bug #869907 [src:ghostscript] ghostscript: CVE-2017-9835: heap-buffer-overflow in gs_alloc_ref_array(ialloc.c) Severity set to 'grave' from 'important' > severity 869910 grave Bug #869910 [src:ghostscript] ghostscript: CVE-2

cups-filters 1.16.0 released!

Hi, I have released cups-filters 1.16.0 now, with the following changes: - cups-browsed: Let elements in arrays get stacked up in the order they are added, before, they were in the order how they are positioned in memory. This especially led to a random orde