Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-02 Thread paul . szabo
Dear Racke, > What is the plan for the package in Debian stable? Sorry, I have no idea. I do not know if the fixed courier-faxmail will be included in stable (lenny). I guess that could only happen via a DSA, I do not recall any other type of improvements until the next "release". And I do not k

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-02 Thread Stefan Hornburg (Racke)
On 06/01/2010 03:05 AM, Paul Szabo wrote: Package: courier-faxmail Severity: grave Tags: security Justification: user security hole Please note remote execute-any-code security bugs in ghostscript: http://bugs.debian.org/583183 This package depends on ghostscript, and may be affected. Plea

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-01 Thread Stefan Hornburg (Racke)
On 06/01/2010 01:24 PM, paul.sz...@sydney.edu.au wrote: Dear Racke, What kind of fixes do you have in mind? Please add the -P- option to all $GS invocations. Thanks, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics Unive

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-01 Thread paul . szabo
Dear Racke, > ... I just wonder why this option isn't mentioned in the gs manpage. Good question. Maybe report as a bug to ghostscript? Cheers, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of SydneyAustralia

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-01 Thread Stefan Hornburg (Racke)
On 06/01/2010 01:24 PM, paul.sz...@sydney.edu.au wrote: Dear Racke, What kind of fixes do you have in mind? Please add the -P- option to all $GS invocations. OK, I'll do so today. I just wonder why this option isn't mentioned in the gs manpage. Regards Racke -- LinuXia Systems

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-01 Thread paul . szabo
Dear Racke, > What kind of fixes do you have in mind? Please add the -P- option to all $GS invocations. Thanks, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of SydneyAustralia -- To UNSUBSCRIBE, email

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-06-01 Thread Stefan Hornburg (Racke)
On 06/01/2010 03:05 AM, Paul Szabo wrote: Package: courier-faxmail Severity: grave Tags: security Justification: user security hole Please note remote execute-any-code security bugs in ghostscript: http://bugs.debian.org/583183 This package depends on ghostscript, and may be affected. Plea

Bug#584001: courier-faxmail: Security bugs in ghostscript

2010-05-31 Thread Paul Szabo
Package: courier-faxmail Severity: grave Tags: security Justification: user security hole Please note remote execute-any-code security bugs in ghostscript: http://bugs.debian.org/583183 This package depends on ghostscript, and may be affected. Please evaluate the security of this package, and