Ovidiu Panait e6058824bb ghostscript: Fix 3 CVEs ...

It was discovered that the ghostscript /invalidaccess checks fail under
certain conditions. An attacker could possibly exploit this to bypass
the -dSAFER protection and, for example, execute arbitrary shell commands
via a specially crafted PostScript document.

It was found that the superexec operator was available in the internal
dictionary in ghostscript before 9.27. A specially crafted PostScript
file could use this flaw in order to, for example, have access to the
file system outside of the constrains imposed by -dSAFER.

It was found that the forceput operator could be extracted from the
DefineResource method in ghostscript before 9.27. A specially crafted
PostScript file could use this flaw in order to, for example, have
access to the file system outside of the constrains imposed by -dSAFER.

References:
https://nvd.nist.gov/vuln/detail/CVE-2019-6116
https://www.openwall.com/lists/oss-security/2019/01/23/5
https://nvd.nist.gov/vuln/detail/CVE-2019-3835
https://nvd.nist.gov/vuln/detail/CVE-2019-3838

Upstream patches:
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=13b0a36
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=2db98f9
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=99f1309
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=59d8f4d
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=2768d1a
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=49c8092
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=2ff600a
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=779664d
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=e8acf6d
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=2055917
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=d683d1e
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=ed9fcd9
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=a82601e

(From OE-Core rev: 12e140dfdac8456772223c816e37bd869419bb18)

(From OE-Core rev: cf5d29dcac6247e8476f7af78b4e0bb129b94677)

Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
[Fix for CVE-2019-6116 is already in thud, so that has been removed]
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2019-07-29 23:50:43 +01:00

..

classes

uboot-sign.bbclass: Remove tab indentations in python code

2019-07-27 18:05:18 +01:00

conf

uninative: Update to 2.6 release

2019-07-27 18:05:18 +01:00

files

common-licenses: update Libpng license text

2019-02-06 16:38:30 +00:00

lib

OpkgPM: use --add-ignore-recommends to process BAD_RECOMMENDATIONS

2019-07-29 23:50:43 +01:00

recipes-bsp

keymaps: tighten package write dependency

2019-02-25 22:27:39 +00:00

recipes-connectivity

wpa_supplicant: Changed systemd template units

2019-07-27 18:05:18 +01:00

recipes-core

glib: Security fix for CVE-2019-9633

2019-07-27 18:05:18 +01:00

recipes-devtools

opkg: add --ignore-recommends flag

2019-07-29 23:50:43 +01:00

recipes-extended

ghostscript: Fix 3 CVEs

2019-07-29 23:50:43 +01:00

recipes-gnome

adwaita-icon-theme: do not delete symbolic svg but pack them in ${PN}-symbolic

2019-05-22 00:31:48 +01:00

recipes-graphics

libsdl: CVE fixes

2019-07-29 23:50:43 +01:00

recipes-kernel

linux-yocto/4.18: update to v4.18.33

2019-05-22 00:31:48 +01:00

recipes-multimedia

gstreamer1.0-plugins-base: fix CVE-2019-9928

2019-07-29 23:50:43 +01:00

recipes-rt

rt-tests: fix upstream version check

2018-05-29 21:07:13 +01:00

recipes-sato

core-image-sato-sdk-ptest: Tweak size to stay within 4GB limit

2019-05-22 00:31:49 +01:00

recipes-support

Curl: Securiyt fix CVE-2019-5435 CVE-2019-5436

2019-07-27 18:05:18 +01:00

site

siteinfo: Define data for ARC

2018-09-21 18:45:47 -07:00

COPYING.GPLv2

Fix license notices for OE-Core

2014-01-02 12:58:54 +00:00

COPYING.MIT

…

recipes.txt

qt4: remove recipes and classes

2016-01-07 13:40:14 +00:00