oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE request: ghostscript

From: Dan Rosenberg <dan.j.rosenberg () gmail com>
Date: Mon, 12 Jul 2010 12:48:35 -0400
I believe this is identical to CVE-2010-1869
(http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2010-1869).

-Dan

On Mon, Jul 12, 2010 at 12:28 PM, Marc Deslauriers
<marc.deslauriers () canonical com> wrote:

Hi,

I don't think this ever got a CVE:

A memory corruption vulnerability in Ghostscript 8.64 and earlier caused
by long names can lead to arbitrary code execution.

http://bugs.ghostscript.com/show_bug.cgi?id=690523
http://svn.ghostscript.com/viewvc?view=rev&revision=9797

Thanks,

Marc.


--
Marc Deslauriers
Ubuntu Security Engineer     | http://www.ubuntu.com/
Canonical Ltd.               | http://www.canonical.com/
Previous By Date Next
Previous By Thread Next

Current thread: