Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-12-01 | ghostscript: 9.25 -> 9.26 | Hongxu Jia | |
- Drop backported CVE fixes 000[1-8]*.patch Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> | |||
2018-11-06 | ghostscript: fix CVE-2018-17961 | Hongxu Jia | |
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2018-17183. Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |