-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : ghostscript Version : 8.71~dfsg2-9+squeeze2 CVE ID : CVE-2015-3228 Debian Bug : 793489
In gs_heap_alloc_bytes(), add a sanity check to ensure we don't overflow the variable holding the actual number of bytes we allocate. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQJ8BAEBCgBmBQJVs5o8XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5 NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHFREP/1L0dvJxbh02Dh2+HpBBXnrr bGP1nh/AMahHieBIHWCldS0liZRUYSecvH/nLyQY5fn9IHBJFhDklbjN6rAQidsk 8Wvj5ZYG8foInq3b/Ptuh1r5TZDqT04A4NJhD9URfj61I3ZSajWUWuIjNSDUBzaj L26B/8egQS+X2XmMh3mHSsftFIk5LTCxyEOtxosj1q2FHeCcAMZCQclM+ElcnYuG Lc9eUwHQYjxYHLKsXBqGNARcUAmEJcscs2RqTSyqAG2UTYswZTBw/qVDk2QMTHx0 aLnpdf+im8QzSvVVY+FkIH8XMJEBUvZh/nZZnsd//fxI9Bx3VXfbdN3ys/HyEjrD mT3iS/JAx0ODWRBE3OdK5svkEb0OIk80o081qvMTBlky/XISUyYosrAP4g5PkjWU my+5RQM9SXSJaayybOVOotOUl8I2Nf3McaGylhRFtZL5IVSiTxD19n/fDBQnae1U yBeOe25UxcUwfEiCOcyuyV9xyurDQxaR34JK8JCQUTv6geQNZG3aSDUud1+61oj6 yAvFeFpdRYh+YTPLRPYPggLUaGD21nJb7J8YhpRUA7gq2rVOR97EBBQlHjIdCJ8S de0+hrPO9giyrlvHqaaFkS1E6zjBFJ0LUF0lEOKn5BQ2ZPwPdHSKK06r8bgpbvvD Bo1TuH8vDxjPfUCfqX2r =3CIu -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
