Welcome!
Important Alert
Do not upgrade your MX 17 or MX18 system installed or live until further notice. A problem with a kernel upgrade has occurred. A fix will be posted when available.

Important information
-- Required MX 15/16 Repository Changes
-- Information on torrent hosting changes
-- Information on MX15/16 GPG Keys
-- Spectre and Meltdown vulnerabilities

News
-- Introducing our new Website
-- MX Linux on social media: here

Current releases
-- MX-18.3 Point Release release info here
-- Migration Information to MX-18 here
-- antiX-17.4.1 release info here

New users
-- Please read this first, and don't forget to add system and hardware information to posts!
-- Here are the Forum Rules

Critical Flaws in Ghostscript Could Leave Many Systems at Risk of Hacking

Report Bugs, Issues and non- pacakage Requests
Post Reply
User avatar
colin_b
Forum Regular
Forum Regular
Posts: 521
Joined: Sun Mar 19, 2017 7:21 pm

Critical Flaws in Ghostscript Could Leave Many Systems at Risk of Hacking

#1

Post by colin_b » Thu Aug 23, 2018 12:11 pm

https://thehackernews.com/2018/08/ghost ... ility.html
Google Project Zero's security researcher has discovered a critical remote code execution (RCE) vulnerability in Ghostscript—an open source interpreter for Adobe Systems' PostScript and PDF page description languages.

Written entirely in C, Ghostscript is a package of software that runs on different platforms, including Windows, macOS, and a wide variety of Unix systems, offering software the ability to convert PostScript language files (or EPS) to many raster formats, such as PDF, XPS, PCL or PXL.

A lot of popular PDF and image editing software, including ImageMagick and GIMP, use Ghostscript library to parse the content and convert file formats.

...

Ormandy advised Linux distributions to disable the processing of PS, EPS, PDF, and XPS content until the issue is addressed.

Post Reply

Return to “Bugs and Non-Package Requests Forum”