retitle 592569 gs: ps documents can overwrite arbitrary files unless -dSAFER is
used
quit
Hi Paul,
Paul Szabo wrote:
> Please make the -dSAFER option the default.
>
> For discussion, rationale etc please see bugs #583183 and #584663
Thanks for a reminder. I'm retitling this bug to clarify the issue
as I understand it (mostly based on [1]).
Background: as gs(1) explains:
-dSAFER
Disables the "deletefile" and "renamefile" operators and
the ability to open files in any mode other than
read-only. This strongly recommended for spoolers,
conversion scripts or other sensitive environments where a
badly written or malicious PostScript program code must be
prevented from changing important files.
Upshot:
Malicious postscript files can write arbitrary files, unless
the -dSAFER option is used.
Proposed fix:
Use the behavior of -dSAFER by default and introduce a new
-dNOSAFER option to restore the older behavior.
Patch is at [2].
Hope that helps,
Jonathan
[1] http://bugs.ghostscript.com/show_bug.cgi?id=691350#c21
[2] http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;bug=592569
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
