oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request - multiple ghostscript -dSAFER sandbox problems

From: Hanno Böck <hanno () hboeck de>
Date: Wed, 5 Oct 2016 19:32:54 +0200
On Wed, 5 Oct 2016 10:09:07 -0700
Tavis Ormandy <taviso () google com> wrote:


Ahh, no, I was right - it's using libgs, and the same issues apply
there.


To clarify the confusion here:
I didn't see ghostscript as a dependency and saw libspectre for ps
rendering. But libspected itself uses ghostscript, so it seems it's
just a wrapper around it.

-- 
Hanno Böck
https://hboeck.de/

mail/jabber: hanno () hboeck de
GPG: FE73757FA60E4E21B937579FA5880072BBB51E42

Attachment: _bin
Description: OpenPGP digital signature

Previous By Date Next
Previous By Thread Next

Current thread: