Lub koob ntawm qhov tsis zoo tsis nres (, , , , , ) hauv , ib txheej ntawm cov cuab yeej rau kev ua, hloov pauv thiab tsim cov ntaub ntawv hauv PostScript thiab PDF hom. Zoo li yav dhau los vulnerabilities () tso cai, thaum ua cov ntaub ntawv tsim tshwj xeeb, kom dhau qhov "-dSAFER" hom kev rho tawm (los ntawm kev tswj hwm nrog ".buildfont1") thiab nkag mus rau cov ntsiab lus ntawm cov ntaub ntawv kaw lus, uas tuaj yeem siv los teeb tsa kev tawm tsam los ua txhaum cai. hauv qhov system (piv txwv li, los ntawm kev ntxiv cov lus txib rau ~ /.bashrc lossis ~/.profile). Kev kho yog muaj raws li . Koj tuaj yeem taug qab qhov muaj ntawm pob hloov tshiab hauv kev faib tawm ntawm nplooj ntawv no: , , , , , , .
Cia peb nco ntsoov koj tias qhov tsis zoo hauv Ghostscript ua rau muaj kev phom sij ntau ntxiv, vim tias pob ntawv no tau siv ntau daim ntawv thov nrov rau kev ua cov ntawv PostScript thiab PDF. Piv txwv li, Ghostscript raug hu thaum lub sij hawm tsim duab duab me me, cov ntaub ntawv keeb kwm yav dhau los, thiab cov duab hloov dua siab tshiab. Rau kev ua tiav kev tawm tsam, ntau zaus nws txaus los rub tawm cov ntaub ntawv nrog kev siv lossis xauj cov npe nrog nws hauv Nautilus. Vulnerabilities hauv Ghostscript kuj tuaj yeem siv los ntawm cov duab processors raws li ImageMagick thiab GraphicsMagick cov pob khoom los ntawm kev hla lawv cov JPEG lossis PNG cov ntaub ntawv uas muaj PostScript code tsis yog duab (cov ntaub ntawv no yuav raug ua tiav hauv Ghostscript, txij li hom MIME tau lees paub los ntawm tus cov ntsiab lus, thiab tsis muaj kev vam khom ntxiv).
Tau qhov twg los: opennet.ru