---------------------------------------------------------------------Fedora Update Notification
FEDORA-2005-727
2005-08-17
---------------------------------------------------------------------Product     : Fedora Core 3
Name        : netpbm
Version     : 10.28                      
Release     : 1.FC3.2                  
Summary     : A library for handling different graphics file formats.
Description :
The netpbm package contains a library of functions that support
programs for handling various graphics file formats, including .pbm
(portable bitmaps), .pgm (portable graymaps), .pnm (portable anymaps),
.ppm (portable pixmaps), and others.

---------------------------------------------------------------------Update Information:

pstopnm in netpbm does not properly use the "-dSAFER" option
when calling Ghostscript to convert a PostScript file into a
(1) PBM, (2) PGM, or (3) PNM file, which allows external
user-complicit attackers to execute arbitrary commands.


---------------------------------------------------------------------* Tue Aug  9 2005 Jindrich Novy  10.28-1.FC3.2
- fix CAN-2005-2471, unsafe gs calls from pstopnm (#165355)


---------------------------------------------------------------------This update can be downloaded from:
  
682fef4118379453f9904ed11025d19c  SRPMS/netpbm-10.28-1.FC3.2.src.rpm
52025f87544eeff14dbd28e041f8f835  x86_64/netpbm-10.28-1.FC3.2.x86_64.rpm
f54e3b276f7de91c60e0274a7e4fa296  x86_64/netpbm-devel-10.28-1.FC3.2.x86_64.rpm
ba23352b4a3408cc09b5a94c7a3ba763  x86_64/netpbm-progs-10.28-1.FC3.2.x86_64.rpm
4f2c90bc63f325618f3f62606c53a8d1 
x86_64/debug/netpbm-debuginfo-10.28-1.FC3.2.x86_64.rpm
77147e145fab7be9d1d3979bd8a6623b  x86_64/netpbm-10.28-1.FC3.2.i386.rpm
77147e145fab7be9d1d3979bd8a6623b  i386/netpbm-10.28-1.FC3.2.i386.rpm
ca36d8da2ce9258dda55bef56459cddf  i386/netpbm-devel-10.28-1.FC3.2.i386.rpm
76580d236a22bf1093ff1deaedd448f9  i386/netpbm-progs-10.28-1.FC3.2.i386.rpm
765ecc1610149fb2ee54b4f59b0e8a44  i386/debug/netpbm-debuginfo-10.28-1.FC3.2.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
-----------------------------------------------------------------------fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list

Fedora Core 3 Update: netpbm-10.28-1.FC3.2

August 18, 2005
Updated package.

Summary

The netpbm package contains a library of functions that support

programs for handling various graphics file formats, including .pbm

(portable bitmaps), .pgm (portable graymaps), .pnm (portable anymaps),

.ppm (portable pixmaps), and others.

pstopnm in netpbm does not properly use the "-dSAFER" option

when calling Ghostscript to convert a PostScript file into a

(1) PBM, (2) PGM, or (3) PNM file, which allows external

user-complicit attackers to execute arbitrary commands.

- fix CAN-2005-2471, unsafe gs calls from pstopnm (#165355)

682fef4118379453f9904ed11025d19c SRPMS/netpbm-10.28-1.FC3.2.src.rpm

52025f87544eeff14dbd28e041f8f835 x86_64/netpbm-10.28-1.FC3.2.x86_64.rpm

f54e3b276f7de91c60e0274a7e4fa296 x86_64/netpbm-devel-10.28-1.FC3.2.x86_64.rpm

ba23352b4a3408cc09b5a94c7a3ba763 x86_64/netpbm-progs-10.28-1.FC3.2.x86_64.rpm

4f2c90bc63f325618f3f62606c53a8d1

x86_64/debug/netpbm-debuginfo-10.28-1.FC3.2.x86_64.rpm

77147e145fab7be9d1d3979bd8a6623b x86_64/netpbm-10.28-1.FC3.2.i386.rpm

77147e145fab7be9d1d3979bd8a6623b i386/netpbm-10.28-1.FC3.2.i386.rpm

ca36d8da2ce9258dda55bef56459cddf i386/netpbm-devel-10.28-1.FC3.2.i386.rpm

76580d236a22bf1093ff1deaedd448f9 i386/netpbm-progs-10.28-1.FC3.2.i386.rpm

765ecc1610149fb2ee54b4f59b0e8a44 i386/debug/netpbm-debuginfo-10.28-1.FC3.2.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

fedora-announce-list@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-announce-list

FEDORA-2005-727 2005-08-17 Name : netpbm Version : 10.28 Release : 1.FC3.2 Summary : A library for handling different graphics file formats. Description : The netpbm package contains a library of functions that support programs for handling various graphics file formats, including .pbm (portable bitmaps), .pgm (portable graymaps), .pnm (portable anymaps), .ppm (portable pixmaps), and others. pstopnm in netpbm does not properly use the "-dSAFER" option when calling Ghostscript to convert a PostScript file into a (1) PBM, (2) PGM, or (3) PNM file, which allows external user-complicit attackers to execute arbitrary commands. - fix CAN-2005-2471, unsafe gs calls from pstopnm (#165355) 682fef4118379453f9904ed11025d19c SRPMS/netpbm-10.28-1.FC3.2.src.rpm 52025f87544eeff14dbd28e041f8f835 x86_64/netpbm-10.28-1.FC3.2.x86_64.rpm f54e3b276f7de91c60e0274a7e4fa296 x86_64/netpbm-devel-10.28-1.FC3.2.x86_64.rpm ba23352b4a3408cc09b5a94c7a3ba763 x86_64/netpbm-progs-10.28-1.FC3.2.x86_64.rpm 4f2c90bc63f325618f3f62606c53a8d1 x86_64/debug/netpbm-debuginfo-10.28-1.FC3.2.x86_64.rpm 77147e145fab7be9d1d3979bd8a6623b x86_64/netpbm-10.28-1.FC3.2.i386.rpm 77147e145fab7be9d1d3979bd8a6623b i386/netpbm-10.28-1.FC3.2.i386.rpm ca36d8da2ce9258dda55bef56459cddf i386/netpbm-devel-10.28-1.FC3.2.i386.rpm 76580d236a22bf1093ff1deaedd448f9 i386/netpbm-progs-10.28-1.FC3.2.i386.rpm 765ecc1610149fb2ee54b4f59b0e8a44 i386/debug/netpbm-debuginfo-10.28-1.FC3.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. fedora-announce-list@redhat.com http://www.redhat.com/mailman/listinfo/fedora-announce-list

Change Log

References

Update Instructions

Severity
Name : netpbm
Version : 10.28
Release : 1.FC3.2
Summary : A library for handling different graphics file formats.

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved