|
| From: | anonymous |
| Subject: | [bug-gv] [bugs #12156] -dSAFER security fix |
| Date: | Sat, 26 Feb 2005 23:34:23 +0000 |
| User-agent: | Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 |
URL:
<http://savannah.gnu.org/bugs/?func=detailitem&item_id=12156>
Summary: -dSAFER security fix
Project: GNU gv
Submitted by: None
Submitted on: Sat 02/26/2005 at 18:34
Category: PDF rendering
Severity: 5 - Average
Item Group: None
Status: None
Privacy: Public
Assigned to: None
Open/Closed: Open
_______________________________________________________
Details:
The gv-3.6.1 hack to make pdf files work with gs-8.00 (and later) introduces
a security hole: it effectively circumvents the whole point of the -dSAFER
option!
The right way to fix this is illustrated in the attached patch (which also
reverts the current hack).
_______________________________________________________
File Attachments:
-------------------------------------------------------
Date: Sat 02/26/2005 at 18:34 Name: gv-3.6.1-gs8.patch Size: 2.68KB By:
None
<http://savannah.gnu.org/bugs/download.php?item_id=12156&item_file_id=2242>
_______________________________________________________
This item URL is:
<http://savannah.gnu.org/bugs/?func=detailitem&item_id=12156>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
| [Prev in Thread] | Current Thread | [Next in Thread] |