ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.12_amd64.deb


Advertisement

Description

ghostscript-x - interpreter for the PostScript language and for PDF - X11 support

Property Value
Distribution Ubuntu 16.04 LTS (Xenial Xerus)
Repository Ubuntu Updates Main amd64
Package filename ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.12_amd64.deb
Package name ghostscript-x
Package version 9.26~dfsg+0
Package release 0ubuntu0.16.04.12
Package architecture amd64
Package type deb
Category text
Homepage http://www.ghostscript.com/
License -
Maintainer Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Download size 42.15 KB
Installed size 235.00 KB
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
This package contains the GPL Ghostscript output device for X11.

Alternatives

Package Version Architecture Repository
ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.12_i386.deb 9.26~dfsg+0 i386 Ubuntu Updates Main
ghostscript-x_9.18~dfsg~0-0ubuntu2_i386.deb 9.18~dfsg~0 i386 Ubuntu Main
ghostscript-x_9.18~dfsg~0-0ubuntu2_amd64.deb 9.18~dfsg~0 amd64 Ubuntu Main
ghostscript-x - - -

Requires

Name Value
ghostscript = 9.26~dfsg+0-0ubuntu0.16.04.12
libc6 >= 2.14
libx11-6 -
libxt6 -

Download

Type URL
Mirror archive.ubuntu.com
Binary Package ghostscript-x_9.26~dfsg+0-0ubuntu0.16.04.12_amd64.deb
Source Package ghostscript

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install ghostscript-x deb package:
    # sudo apt-get install ghostscript-x

Files

Path
/usr/lib/ghostscript/9.26/X11.so
/usr/share/doc/ghostscript-x/NEWS.Debian.gz
/usr/share/doc/ghostscript-x/changelog.Debian.gz
/usr/share/doc/ghostscript-x/copyright

Changelog

2019-11-06 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.12) xenial-security; urgency=medium
* SECURITY UPDATE: '-dSAFER' restrictions bypass by .forceput when
loading fonts
- debian/patches/CVE-2019-14869.patch: remove use of .forceput in
Resource/Init/gs_ttf.ps.
- CVE-2019-14869
2019-08-27 - Steve Beattie <sbeattie@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.11) xenial-security; urgency=medium
* SECURITY UPDATE: '-dSAFER' restrictions bypass by .forceput
Exposures
- debian/patches/CVE-2019-14811-CVE-2019-14812-CVE-2019-14813.patch:
Be more defensive by preventing access to .forceput from
.setuserparams2.
- CVE-2019-14811
- CVE-2019-14812
- CVE-2019-14813
- debian/patches/CVE-2019-14817.patch: mark more uses of .forceput
as execteonly
- CVE-2019-14817
2019-08-08 - Steve Beattie <sbeattie@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.10) xenial-security; urgency=medium
* SECURITY UPDATE: `-dSAFER` restrictions bypass
- debian/patches/CVE-2019-10216.patch: protect use of .forceput
with executeonly
- CVE-2019-10216
2019-05-07 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.9) xenial-security; urgency=medium
* SECURITY UPDATE: code execution vulnerability
- debian/patches/CVE-2019-3839-1.patch: hide pdfdict and GS_PDF_ProcSet
in Resource/Init/pdf_base.ps, Resource/Init/pdf_draw.ps,
Resource/Init/pdf_font.ps, Resource/Init/pdf_main.ps,
Resource/Init/pdf_ops.ps, Resource/Init/pdf_sec.ps.
- debian/patches/CVE-2019-3839-2.patch: fix lib/pdf2dsc.ps to use
documented Ghostscript pdf procedures in lib/pdf2dsc.ps.
- CVE-2019-3839
2019-03-19 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.8) xenial-security; urgency=medium
* SECURITY UPDATE: superexec operator is available
- debian/patches/CVE-2019-3835-pre1.patch: Have gs_cet.ps run from
gs_init.ps in Resource/Init/gs_cet.ps, Resource/Init/gs_init.ps.
- debian/patches/CVE-2019-3835-pre2.patch: Undef /odef in
Resource/Init/gs_cet.ps, Resource/Init/gs_init.ps.
- debian/patches/CVE-2019-3835-1.patch: restrict superexec and remove
it in Resource/Init/gs_cet.ps, Resource/Init/gs_dps1.ps,
Resource/Init/gs_fonts.ps, Resource/Init/gs_init.ps,
Resource/Init/gs_ttf.ps, Resource/Init/gs_type1.ps.
- debian/patches/CVE-2019-3835-2.patch: obliterate superexec in
Resource/Init/gs_init.ps, psi/icontext.c, psi/icstate.h,
psi/zcontrol.c, psi/zdict.c, psi/zgeneric.c.
- CVE-2019-3835
* SECURITY UPDATE: forceput in DefineResource is still accessible
- debian/patches/CVE-2019-3838-1.patch: make a transient proc
executeonly in Resource/Init/gs_res.ps.
- debian/patches/CVE-2019-3838-2.patch: an extra transient proc needs
executeonly in Resource/Init/gs_res.ps.
- CVE-2019-3838
2019-02-25 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.7) xenial-security; urgency=medium
* SECURITY REGRESSION: High RIP_MAX_CACHE makes cups output device fail,
second fix attempt. (LP: #1815339)
- debian/patches/lp1815339.patch: re-enable.
- debian/patches/lp1815339-2.patch: properly map RGBW color space in
cups/gdevcups.c.
2019-02-23 - Chris Coulson <chris.coulson@canonical.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.6) xenial-security; urgency=medium
* SECURITY REGRESSION: Ghostscript update causes blue background
(LP: #1817308)
- disable debian/patches/lp1815339.patch
2019-02-20 - Marc Deslauriers <marc.deslauriers@ubuntu.com>
ghostscript (9.26~dfsg+0-0ubuntu0.16.04.5) xenial-security; urgency=medium
* SECURITY REGRESSION: High RIP_MAX_CACHE makes cups output device fail
(LP: #1815339)
- debian/patches/lp1815339.patch: fix logic in cups/gdevcups.c.
* debian/symbols.common: add new symbol missing in previous update.

See Also

Package Description
ghostscript_9.26~dfsg+0-0ubuntu0.16.04.12_amd64.deb interpreter for the PostScript language and for PDF
giflib-tools_5.1.4-0.3~16.04.1_amd64.deb library for GIF images (utilities)
gir1.2-accountsservice-1.0_0.6.40-2ubuntu11.3_amd64.deb GObject introspection data for AccountService
gir1.2-appindicator-0.1_12.10.1+16.04.20170215-0ubuntu1_amd64.deb Typelib files for libappindicator1
gir1.2-appindicator3-0.1_12.10.1+16.04.20170215-0ubuntu1_amd64.deb Typelib files for libappindicator3-1
gir1.2-appstream_0.9.4-1ubuntu4_amd64.deb Library to access AppStream services (introspection data)
gir1.2-appstreamglib-1.0_0.5.13-1ubuntu6_amd64.deb GObject introspection data for the libappstream-glib library
gir1.2-bamf-3_0.5.3~bzr0+16.04.20180209-0ubuntu1_amd64.deb GObject introspection data for the Bamf library
gir1.2-click-0.4_0.4.43+16.04.20170613-0ubuntu1_amd64.deb GIR bindings for Click package management library
gir1.2-dbusmenu-glib-0.4_16.04.1+16.04.20160927-0ubuntu1_amd64.deb typelib file for libdbusmenu-glib4
gir1.2-dbusmenu-gtk-0.4_16.04.1+16.04.20160927-0ubuntu1_amd64.deb typelib file for libdbusmenu-gtk4
gir1.2-dbusmenu-gtk3-0.4_16.04.1+16.04.20160927-0ubuntu1_amd64.deb typelib file for libdbusmenu-gtk3-4
gir1.2-ebook-1.2_3.18.5-1ubuntu1.2_amd64.deb GObject introspection for the EBook library
gir1.2-ebookcontacts-1.2_3.18.5-1ubuntu1.2_amd64.deb GObject introspection for the EBook Contacts library
gir1.2-edataserver-1.2_3.18.5-1ubuntu1.2_amd64.deb GObject introspection for the EDataServer library
Advertisement
Advertisement