-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 24 Aug 2024 21:29:52 +0200 Source: ghostscript Binary: ghostscript ghostscript-dbgsym ghostscript-x libgs-dev libgs10 libgs10-dbgsym Architecture: armhf Version: 10.0.0~dfsg-11+deb12u5 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-04) Changed-By: Salvatore Bonaccorso Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-x - transitional package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs10 - interpreter for the PostScript language and for PDF - Library Changes: ghostscript (10.0.0~dfsg-11+deb12u5) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * review printing of pointers (CVE-2024-29508) * Fix compiler warning in optimised build * Coverity IDs 414141 & 414145 * Don't allow PDF files with bad Filters to overflow the debug buffer (CVE-2024-29506) * Don't use strlen on passwords (CVE-2024-29509) * Bounds checks when using CIDFont related params (CVE-2024-29507) Checksums-Sha1: dc11390e49e7a1aa0829e5ccef15154c55bb1448 6184 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u5_armhf.deb bd2c11f417ede0b53d49c515c778a07b2646a9ba 28048 ghostscript-x_10.0.0~dfsg-11+deb12u5_armhf.deb ec414dc7c47db2e20abf9d395d73f62423456e19 11855 ghostscript_10.0.0~dfsg-11+deb12u5_armhf-buildd.buildinfo e924b3127edb807f2efc22f96018a4852043f639 56972 ghostscript_10.0.0~dfsg-11+deb12u5_armhf.deb 0b502dfb20e55b38849ca72dee8581e8c9c3e95c 39576 libgs-dev_10.0.0~dfsg-11+deb12u5_armhf.deb 12042182b518363baa2581898250deea8dba9996 9439752 libgs10-dbgsym_10.0.0~dfsg-11+deb12u5_armhf.deb e10e7d83c688d6b2db13212b4b0cce6658c43426 2101036 libgs10_10.0.0~dfsg-11+deb12u5_armhf.deb Checksums-Sha256: 48b3cedfa4562b7187b66a1d572763f0f29eb07c0c9d1d4560e8279664993a81 6184 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u5_armhf.deb 293131f8b954a8bca6dceb6292c855b2fa3bab713c2448d9ad8c1325fe060b1e 28048 ghostscript-x_10.0.0~dfsg-11+deb12u5_armhf.deb 90c9b317a8b6bb3fbe0fc1f11f4bbc5b14a98503c3d2e9cf796240125c0b6e4b 11855 ghostscript_10.0.0~dfsg-11+deb12u5_armhf-buildd.buildinfo e72802053de4ca1a87d1546a6fa0438ebb06c4e08c2ee2a9c5cb990c62bef2f1 56972 ghostscript_10.0.0~dfsg-11+deb12u5_armhf.deb d556197670ff3ae6f242f67a49c25ef308ab1e3e5f5265df07d7a2bf1f8395fb 39576 libgs-dev_10.0.0~dfsg-11+deb12u5_armhf.deb 7c56c39f84ef8d7da8fd58a0c3e7dcf61cf4e2a1204b2dd1ccdc74b3a0a563b8 9439752 libgs10-dbgsym_10.0.0~dfsg-11+deb12u5_armhf.deb e412fe49a35d54b6680d69e056e89ae931e22f52977c05d00eb1976d18739efd 2101036 libgs10_10.0.0~dfsg-11+deb12u5_armhf.deb Files: 5cfe71aa234ae0cc2507bff4d90ee9d8 6184 debug optional ghostscript-dbgsym_10.0.0~dfsg-11+deb12u5_armhf.deb 3f785af46f7288ec105e6ff41022d629 28048 oldlibs optional ghostscript-x_10.0.0~dfsg-11+deb12u5_armhf.deb ba84a57365d5a61bf31bfe85f64f50cb 11855 text optional ghostscript_10.0.0~dfsg-11+deb12u5_armhf-buildd.buildinfo 34030c5430638d33bc073d78c740a965 56972 text optional ghostscript_10.0.0~dfsg-11+deb12u5_armhf.deb 08e5879a8bea4e5d36b703421694e95b 39576 libdevel optional libgs-dev_10.0.0~dfsg-11+deb12u5_armhf.deb 763fc74dac32b1b14c0f626141cb743b 9439752 debug optional libgs10-dbgsym_10.0.0~dfsg-11+deb12u5_armhf.deb 75c7c6848b98596c598292d9496e892b 2101036 libs optional libgs10_10.0.0~dfsg-11+deb12u5_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE6s8UzO+WAx8RRAOV80lOEvgzuSsFAmbLLkEACgkQ80lOEvgz uStZwA//RSHHhACuE9Asl3Pk3VkErKSFVqv9AjTtBsWOt12aQGc9mr67WylAR+ri TRjN4sCBdHBQnWFYm7sTV65f2nSXZPD/ijHarjmw9IzVBzQ+VvlXaoZ8Xwlx2PPg kGrXHZmKJQqtZ5EIXVzS5plCElRayeXevUlPAevCAuGCkkCx2c3GCNEwlD5Y99or YxloQcLMWlAfuXJJFuAsLIWwabCsucvItvacZ27WJYgpYnnrc4F/TtNVJco26NKA c5vSHxzqmnzVeJJXvAzpK18JUoWjiXL7PSo0tlCHNl1E+xhBlCemp4iGimi72C5m 7f4m9sV9RUvfouF8XSv75EZVoHsIbwBAQ73P69iG0T9qW7Unwwgba20ys3QgdCRR pB9zyYQgo0kS//NSmR1+XOhQKxihHpjc/T7fR283DIGcZJbmqjKyPs8jgKW11W8j 1wltKeSXhX7NBZPZ25F5UT7vFHtIgXuiy4fTy4BtOfrL6ZRYr+iegxQ119br5s7h X7IbtqRhd6nRjC9tW7BWdEI8bSN1l/B8Rl8B0TcQltChJQRKYvzkl1aYl8XPBndw g1pRkQUi6xgVpxtwL6INLl7b/XtWlIrlJuR8uzu7a7g+sj3OKHDIVdcEX/4drAW6 wD+d7+g8eRBctxv4a8TjKyeGvePwgCMHcgqlRM9uQkeL9lEpMiA= =DsDL -----END PGP SIGNATURE-----