GhostScript utility script vulnerabilities

ID USN-3-1
Type ubuntu
Reporter Ubuntu
Modified 2004-10-27T00:00:00


Recently, Trustix Secure Linux discovered some vulnerabilities in the gs-common package. The utilities “” and “ps2epsi” created temporary files in an insecure way, which allowed a symlink attack to create or overwrite arbitrary files with the privileges of the user invoking the program.