[SECURITY] New version of ghostscript released

Package : gs Problem type : symlink attack Debian-specific: no ghostscript uses temporary files to do some of its work. Unfortunately the method used to create those files wasnt secure: mktemp was used to create a name for a temporary file, but the file was not opened safely. A second problem is...

[SECURITY] New version of ghostscript released

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman November 23, 2000 - ------------------------------------------------------------------------ Package : gs Problem type : symlink...

CVE-1999-0155

The ghostscript command with the -dSAFER option allows remote attackers to execute commands...

CVE-1999-0155

The CVE concerns Ghostscript where the command-line option -dSAFER does not sufficiently constrain the sandbox, allowing a remote attacker to execute commands. The available connected documents identify the affected software as Ghostscript and the vulnerability type as remote command execution tr...

CVE-1999-0155

The ghostscript command with the -dSAFER option allows remote attackers to execute commands...

PT-1995-1007 · Artifex · Ghostscript

Name of the Vulnerable Software and Affected Versions: ghostscript affected versions not specified Description: The issue allows remote attackers to execute commands through the ghostscript command when the -dSAFER option is used. Recommendations: At the moment, there is no information about a...