Ghostscript: Buffer overflow

Ghostscript: Buffer overflow A stack-based buffer overflow has been discovered in Ghostscript, allowing arbitrary code execution. ghostscript 2008-03-08 2008-03-08 208999 remote 8.15.4-r1 8.15.4-r1 8.61-r3 8.61-r3 8.60.0-r2 8.60.0-r2

Ghostscript is a suite of software based on an interpreter for PostScript and PDF.

Chris Evans (Google Security) discovered a stack-based buffer overflow within the zseticcspace() function in the file zicc.c when processing a PostScript file containing a long "Range" array in a .seticcscpate operator.

A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted PostScript file, which could possibly lead to the execution of arbitrary code or a Denial of Service.

There is no known workaround at this time.

All Ghostscript ESP users should upgrade to the latest version:


    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-text/ghostscript-esp-8.15.4-r1"

All Ghostscript GPL users should upgrade to the latest version:


    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-text/ghostscript-gpl-8.61-r3"

All Ghostscript GNU users should upgrade to the latest version:


    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-text/ghostscript-gnu-8.60.0-r2"

CVE-2008-0411 jaervosz jaervosz psychoschlumpf