Date: Sun, 2 Mar 2008 12:20:02 GMT From: bf <bf2006a@yahoo.com> To: freebsd-ports-bugs@FreeBSD.org Subject: Re: ports/121283: [PATCH]print/ghostscript-gpl: fix security hole in 8.61 Message-ID: <200803021220.m22CK2IO005084@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/121283; it has been noted by GNATS. From: bf <bf2006a@yahoo.com> To: bug-followup@FreeBSD.org Cc: Subject: Re: ports/121283: [PATCH]print/ghostscript-gpl: fix security hole in 8.61 Date: Sun, 2 Mar 2008 04:14:54 -0800 (PST) I should also mention that versions of ghostscript prior to 8.61 may suffer from the remote security vulnerability CVE-2007-2721 in the bundled jasper code. See: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2721 This vulnerability has been fixed in the latest ghostscript 8.61 source code tarballs, using a fix from: http://www.mail-archive.com/debian-bugs-rc@lists.debian.org/msg118235.html This should probably also be noted in vuxml. ____________________________________________________________________________________ Looking for last minute shopping deals? Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200803021220.m22CK2IO005084>