A null pointer vulnerability was found in mem_get_bits_rectangle() when trying to read from unallocated memory. Upstream bug: https://bugs.ghostscript.com/show_bug.cgi?id=697676 Upstream patch: http://git.ghostscript.com/?p=ghostpdl.git;h=309eca4e0a31ea70dcc844812691439312dad091
Hello Adam, will you be creating a BZ for this in Fedora as well, or should I clone it? I'm currently waiting for it. Best regards, Dee'Kej
Created ghostscript tracking bugs for this issue: Affects: fedora-all [bug 1434497]
(In reply to David Kaspar [Dee'Kej] from comment #1) > Hello Adam, > > will you be creating a BZ for this in Fedora as well, or should I clone it? > I'm currently waiting for it. > > Best regards, > > Dee'Kej Hi David, Sorry, forgot to create it. It's done now. Thanks for noticing!
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:2180 https://access.redhat.com/errata/RHSA-2017:2180