Bug 133331 - vuxml submission for print/ghostscript8 et al.
Summary: vuxml submission for print/ghostscript8 et al.
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Martin Wilke
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-04-03 06:50 UTC by mark
Modified: 2009-05-13 09:30 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description mark 2009-04-03 06:50:02 UTC 

Fix: 

<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
   <vuln vid="6e38e7eb-277a-4116-b4a8-66b2a18a60f0">
     <topic>ghostscript8 -- Ghostscript pdf_base_font_alloc Buffer Overflow Vulnerability</topic>
     <affects>
       <package>
         <name>ghostscript8</name>
         <name>ghostscript8-nox11</name>
         <range><lt>8.64</lt></range>
       </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
         <p>SecurityFocus reports:</p>
         <blockquote cite="http://www.securityfocus.com/bid/34340/">
           <p>There is a buffer overflow vulnerability
in Ghostscript in the pdf_base_font_alloc function in gdevpdtb.c.</p>
         </blockquote>
       </body>
     </description>
     <references>
      <bid>34340</bid>
      <url>http://www.securityfocus.com/bid/34340/</url>
     </references>
     <dates>
       <discovery>2009-02-03</discovery>
       <entry>2009-04-02</entry>
     </dates>
   </vuln>
Comment 1 Martin Wilke freebsd_committer freebsd_triage 2009-04-03 09:06:32 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->miwi

I'll take it.
Comment 2 Martin Wilke freebsd_committer freebsd_triage 2009-05-13 09:23:50 UTC 
State Changed
From-To: open->closed

Committed. Thanks!
Comment 3 dfilter service freebsd_committer freebsd_triage 2009-05-13 09:24:06 UTC 
miwi        2009-05-13 08:23:57 UTC

  FreeBSD ports repository

  Modified files:
    security/vuxml       vuln.xml 
  Log:
  - Document ghostscript8 -- Buffer Overflow Vulnerability
  
  PR:             133331 (baesed on)
  
  Revision  Changes    Path
  1.1931    +35 -1     ports/security/vuxml/vuln.xml
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"