[bug-gv] Re: Security issues

bug-gv

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-gv] Re: Security issues

From:	paul . szabo
Subject:	[bug-gv] Re: Security issues
Date:	Sun, 30 May 2010 20:21:03 +1000

Now looking... I see the same-as-pdf2dsc issues:
 - the nonsense of "GS_EXECUTABLE=gs", and
 - the non-absolute-paths for provided ps files,
and of course the missing -P- and mostly missing -dSAFER, in other
gs scripts namely:
  /usr/bin/bdftops
  /usr/bin/dumphint
  /usr/bin/dvipdf
  /usr/bin/eps2eps
  /usr/bin/font2c
  /usr/bin/pdf2dsc
  /usr/bin/pdf2ps
  /usr/bin/pdfopt
  /usr/bin/pf2afm
  /usr/bin/pfbtopfa
  /usr/bin/printafm
  /usr/bin/ps2ascii
  /usr/bin/ps2epsi
  /usr/bin/ps2pdf
  /usr/bin/ps2pdf12
  /usr/bin/ps2pdf13
  /usr/bin/ps2pdf14
  /usr/bin/ps2pdfwr
  /usr/bin/ps2ps
  /usr/bin/ps2ps2
  /usr/bin/wftopfa
I guess this should be reported to Debian, against ghostscript: right?

Thanks, Paul

Paul Szabo   address@hidden   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia

[Prev in Thread]

Current Thread

[Next in Thread]

[bug-gv] Re: Security issues, paul . szabo <=

Prev by Date: [bug-gv] Re: Security issues
Next by Date: Re: [bug-gv] Re: Security issues
Previous by thread: [bug-gv] Segfault with old resources
Next by thread: [bug-gv] [bug #29993] Aspect ratio too wide
Index(es):
- Date
- Thread