Boletines de Vulnerabilidades |
DSA-4499 ghostscript - security update |
|
Información sobre el sistema |
|
Software afectado | Debian |
Descripción |
|
Netanel reported that the .buildfont1 procedure in Ghostscript, the GPLPostScript/PDF interpreter, does not properly restrict privileged calls,which could result in bypass of file system restrictions of the dSAFERsandbox. More info: https://www.debian.org/security/2019/dsa-4499 |
|
Identificadores estándar |
|
Propiedad | Valor |
CVE | CVE-2019-10216 and DSA-4499. |
Histórico de versiones |
||
Versión | Comentario | Fecha |
1.0 | Advisory issued | 2019-08-15 |