The Ghostscript International Color Consortium Format Library(icclib), implementing support for the cross-platform device independent color profile format, is prone to multiple integer overflows and lacks multiple upper-bounds checks on certain variable sizes.
------------------------------------------------------------------------
Pardus Linux Security Advisory 2009-44 security@pardus.org.tr
------------------------------------------------------------------------
Date: 2009-04-01
Severity: 3
Type: Remote
------------------------------------------------------------------------
Summary
=======
The Ghostscript International Color Consortium Format Library(icclib),
implementing support for the cross-platform device independent color
profile format, is prone to multiple integer overflows and lacks
multiple upper-bounds checks on certain variable sizes.
Description
===========
Providing a malicious PostScript file with embedded images with
specially-crafted ICC profiles could cause the Ghostscript (PostScript
and PDF language interpreter and previewer) to crash, or, potentially,
execute arbitrary code.
Affected packages:
Pardus 2008:
ghostscript, all before 8.61-20-2
Resolution
==========
There are update(s) for ghostscript. You can update them via Package
Manager or with a single command from console:
pisi up ghostscript
References
==========
* http://bugs.pardus.org.tr/show_bug.cgi?id=9453
* http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0583
* http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584