[El-errata] ELSA-2012-0095 Moderate: Oracle Linux 5 ghostscript security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Fri Feb 3 18:53:20 PST 2012
Oracle Linux Security Advisory ELSA-2012-0095
https://rhn.redhat.com/errata/RHSA-2012-0095.html
The following updated rpms for Oracle Linux 5 have been uploaded to the
Unbreakable Linux Network:
i386:
ghostscript-8.70-6.el5_7.6.i386.rpm
ghostscript-devel-8.70-6.el5_7.6.i386.rpm
ghostscript-gtk-8.70-6.el5_7.6.i386.rpm
x86_64:
ghostscript-8.70-6.el5_7.6.i386.rpm
ghostscript-8.70-6.el5_7.6.x86_64.rpm
ghostscript-devel-8.70-6.el5_7.6.i386.rpm
ghostscript-devel-8.70-6.el5_7.6.x86_64.rpm
ghostscript-gtk-8.70-6.el5_7.6.x86_64.rpm
ia64:
ghostscript-8.70-6.el5_7.6.ia64.rpm
ghostscript-devel-8.70-6.el5_7.6.ia64.rpm
ghostscript-gtk-8.70-6.el5_7.6.ia64.rpm
SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/ghostscript-8.70-6.el5_7.6.src.rpm
Description of changes:
[8.70-6:.6]
- Applied upstream fix to last patch (CVE-2010-4054, bug #646086).
[8.70-6:.5]
- Applied patch to prevent null pointer dereference (CVE-2010-4054,
bug #646086).
[8.70-6:.4]
- Applied patch to avoid reading initialization files from CWD
(CVE-2010-2055, bug #599564).
- Applied patch to prevent integer underflow in TrueType bytecode
interpreter (CVE-2009-3743, bug #627902).
[8.70-6:.3]
- Fixed character spacing problems using backported patch (bug #688996).
- Match landscape page sizes when writing PXL (bug #692165).
More information about the El-errata
mailing list