Pardus: Ghostscript: Multiple Integer
Posted by Benjamin D. Thomas   
The Ghostscript International Color Consortium Format Library(icclib), implementing support for the cross-platform device independent color profile format, is prone to multiple integer overflows and lacks multiple upper-bounds checks on certain variable sizes.

------------------------------------------------------------------------
Pardus Linux Security Advisory 2009-44            security@pardus.org.tr
------------------------------------------------------------------------
      Date: 2009-04-01
  Severity: 3
      Type: Remote
------------------------------------------------------------------------

Summary
=======

The Ghostscript International Color Consortium Format  Library(icclib),
implementing support for the cross-platform  device  independent  color
profile format, is  prone  to  multiple  integer  overflows  and  lacks
multiple upper-bounds checks on certain variable sizes.


Description
===========

Providing  a malicious  PostScript  file  with  embedded  images  with
specially-crafted ICC profiles could cause the Ghostscript  (PostScript
and PDF language interpreter and previewer) to crash, or,  potentially,
execute arbitrary code.



Affected packages:

  Pardus 2008:
    ghostscript, all before 8.61-20-2


Resolution
==========

There are update(s) for ghostscript. You can update  them  via  Package
Manager or with a single command from console:

    pisi up ghostscript

References
==========

  * http://bugs.pardus.org.tr/show_bug.cgi?id=9453
  * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0583
  * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584