bug-gv
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-gv] [bug #12156] -dSAFER security fix


From: Jose E. Marchesi
Subject: [bug-gv] [bug #12156] -dSAFER security fix
Date: Thu, 31 Mar 2005 12:15:36 +0000
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.3) Gecko/20041007 Debian/1.7.3-5

URL:
  <http://savannah.gnu.org/bugs/?func=detailitem&item_id=12156>

                 Summary: -dSAFER security fix
                 Project: GNU gv
            Submitted by: None
            Submitted on: Sat 02/26/05 at 23:34
                Category: PDF rendering
                Severity: 3 - Normal
              Item Group: None
                  Status: None
                 Privacy: Public
             Assigned to: None
             Open/Closed: Open

    _______________________________________________________

Details:

The gv-3.6.1 hack to make pdf files work with gs-8.00 (and later) introduces
a security hole: it effectively circumvents the whole point of the -dSAFER
option!

The right way to fix this is illustrated in the attached patch (which also
reverts the current hack).






    _______________________________________________________

File Attachments:


-------------------------------------------------------
Date: Sat 02/26/05 at 23:34  Name: gv-3.6.1-gs8.patch  Size: 2.68KB   By:
None

<http://savannah.gnu.org/bugs/download.php?item_id=12156&item_file_id=2242>

    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/bugs/?func=detailitem&item_id=12156>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/





reply via email to

[Prev in Thread] Current Thread [Next in Thread]