Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package ghostscript for openSUSE:Factory checked in at 2023-04-12 12:50:52 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ghostscript (Old) and /work/SRC/openSUSE:Factory/.ghostscript.new.19717 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ghostscript" Wed Apr 12 12:50:52 2023 rev:57 rq:1078390 version:9.56.1 Changes: -------- --- /work/SRC/openSUSE:Factory/ghostscript/ghostscript.changes 2022-07-29 16:46:51.842480077 +0200 +++ /work/SRC/openSUSE:Factory/.ghostscript.new.19717/ghostscript.changes 2023-04-12 12:50:56.512701084 +0200 @@ -1,0 +2,8 @@ +Tue Apr 11 09:09:56 UTC 2023 - Johannes Meixner <jsm...@suse.com> + +- CVE-2023-28879.patch fixes CVE-2023-28879 + Buffer Overflow in s_xBCPE_process + cf. https://bugs.ghostscript.com/show_bug.cgi?id=706494 + (bsc#1210062) + +------------------------------------------------------------------- New: ---- CVE-2023-28879.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ghostscript.spec ++++++ --- /var/tmp/diff_new_pack.nEquBp/_old 2023-04-12 12:50:57.456706601 +0200 +++ /var/tmp/diff_new_pack.nEquBp/_new 2023-04-12 12:50:57.464706648 +0200 @@ -1,7 +1,7 @@ # # spec file # -# Copyright (c) 2022 SUSE LLC +# Copyright (c) 2023 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -47,6 +47,12 @@ # Patch101 ijs_exec_server_dont_use_sh.patch fixes IJS printing problem # additionally allow exec'ing hpijs in apparmor profile was needed (bsc#1128467): Patch101: ijs_exec_server_dont_use_sh.patch +# Patch102 CVE-2023-28879.patch is +# https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=37ed5022cecd +# that fixes CVE-2023-28879 Buffer Overflow in s_xBCPE_process +# cf. https://bugs.ghostscript.com/show_bug.cgi?id=706494 +# and https://bugzilla.suse.com/show_bug.cgi?id=1210062 +Patch102: CVE-2023-28879.patch BuildRequires: freetype2-devel BuildRequires: libjpeg-devel BuildRequires: liblcms2-devel @@ -240,6 +246,12 @@ # Patch101 ijs_exec_server_dont_use_sh.patch fixes IJS printing problem # additionally allow exec'ing hpijs in apparmor profile was needed (bsc#1128467): %patch101 -p1 +# Patch102 CVE-2023-28879.patch is +# https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=37ed5022cecd +# that fixes CVE-2023-28879 Buffer Overflow in s_xBCPE_process +# cf. https://bugs.ghostscript.com/show_bug.cgi?id=706494 +# and https://bugzilla.suse.com/show_bug.cgi?id=1210062 +%patch102 # Remove patch backup files to avoid packaging # cf. https://build.opensuse.org/request/show/581052 rm -f Resource/Init/*.ps.orig ++++++ CVE-2023-28879.patch ++++++ --- base/sbcp.c.orig 2020-03-19 09:21:42.000000000 +0100 +++ base/sbcp.c 2023-04-03 12:36:26.024927229 +0200 @@ -50,6 +50,14 @@ s_xBCPE_process(stream_state * st, strea byte ch = *++p; if (ch <= 31 && escaped[ch]) { + /* Make sure we have space to store two characters in the write buffer, + * if we don't then exit without consuming the input character, we'll process + * that on the next time round. + */ + if (pw->limit - q < 2) { + p--; + break; + } if (p == rlimit) { p--; break;