[Buildroot] [PATCH] package/ghostscript: security bump to version 9.27

Peter Korsgaard peter at korsgaard.com
Sun Apr 14 21:27:18 UTC 2019

>>>>> "Baruch" == Baruch Siach <baruch at tkos.co.il> writes:

 > Fixes CVE-2019-3835, CVE-2019-3838: A specially crafted PostScript file
 > could use these flaws to have access to the file system outside of the
 > constrains imposed by -dSAFER.

 > Drop upstream patches.

 > Use the make subst function to compute the download site from version.

 > Cc: Bernd Kuhls <bernd.kuhls at t-online.de>
 > Signed-off-by: Baruch Siach <baruch at tkos.co.il>

Committed to 2019.02.x, thanks.

Bye, Peter Korsgaard

More information about the buildroot mailing list