Changeset f429481


Ignore:
Timestamp:
09/10/2021 09:47:52 PM (7 weeks ago)
Author:
Ken Moffat <ken@…>
Branches:
ken/refactor-virt, lazarus, trunk
Children:
8d3c348
Parents:
eb448ba
Message:

ghostscript - patch it to fix CVE-2021-3781.

Files:
2 edited

Legend:

Unmodified
Added
Removed
  • introduction/welcome/changelog.xml

    reb448ba rf429481  
    4545      <para>September 10th, 2021</para>
    4646      <itemizedlist>
     47        <listitem>
     48          <para>[ken] - Patch ghostscript for CVE-2021-3781 0-day
     49          (security update re libgs). Thanks to Doug for helping me
     50          understand the public PoC. Fixes
     51          <ulink url="&blfs-ticket-root;15517">#15517</ulink>.</para>
     52        </listitem>
    4753        <listitem>
    4854          <para>[renodr] - Update to libseccomp-2.5.2. Fixes
  • pst/printing/gs.xml

    reb448ba rf429481  
    9191        <para>
    9292          Required patch:
    93           <ulink url="&patch-root;/ghostscript-&gs-version;-upstream_fix-1.patch"/>
     93          <ulink url="&patch-root;/ghostscript-&gs-version;-upstream_fix-2.patch"/>
    9494        </para>
    9595      </listitem>
     
    200200
    201201    <para>
    202       Apply a patch to prevent a segfault when processing some PDF files:
    203     </para>
    204 
    205 <screen><userinput remap="pre">patch -Np1 -i ../ghostscript-&gs-version;-upstream_fix-1.patch</userinput></screen>
     202      Apply a patch to prevent a segfault when processing some PDF files and
     203      to fix a public 0-day in libgs which can be exploited via ImageMagick:
     204    </para>
     205
     206<screen><userinput remap="pre">patch -Np1 -i ../ghostscript-&gs-version;-upstream_fix-2.patch</userinput></screen>
    206207
    207208    <para>
Note: See TracChangeset for help on using the changeset viewer.