Ku-Ghostscript, isethi yamathuluzi okucubungula, ukuguqula nokukhiqiza imibhalo ngefomethi ye-PostScript ne-PDF, ubungozi (), okungabangela ukuthi amafayela ashintshwe kanye nemiyalo engafanele ikhishwe lapho kuvulwa amadokhumenti e-PostScript aklanywe ngokukhethekile. Ukusebenzisa i-opharetha ye-PostScript engajwayelekile embhalweni ikuvumela ukuthi ubangele ukuchichima kohlobo lwe-uint32_t lapho ubala usayizi, bhala phezu kwezindawo zememori ngaphandle kwebhafa eyabelwe futhi uthole ukufinyelela kumafayela ku-FS, angasetshenziswa ukuhlela ukuhlasela ukuze kwenziwe ikhodi engafanele ohlelweni (isibonelo, ngokwengeza imiyalo ku- ~/.bashrc noma ~/. iphrofayili).
Inkinga iyathinta kusuka ku-9.50 kuye ku-9.52 (iphutha kusukela ekukhishweni kwe-9.28rc1, kodwa, ngokusho abacwaningi abahlonze ubungozi, bavela kusukela kunguqulo 9.50).
Lungisa okuhlongozwayo ekukhululweni (). Izibuyekezo zephakheji ye-Hotfix sezivele zikhishelwe , , . Amaphakheji phakathi izinkinga azithinteki.
Ake sikukhumbuze ukuthi ubungozi ku-Ghostscript bubeka ingozi eyengeziwe, njengoba le phakheji isetshenziswa ezinhlelweni eziningi ezidumile zokucubungula amafomethi we-PostScript kanye ne-PDF. Isibonelo, i-Ghostscript ibizwa ngesikhathi sokudala isithonjana sedeskithophu, ukukhomba idatha yangemuva, nokuguqulwa kwesithombe. Ukuhlasela okuphumelelayo, ezimweni eziningi kwanele ukumane ulande ifayela nge-exploit noma upheqa umkhombandlela ngalo ku-Nautilus. Ubungozi ku-Ghostscript bungaphinda busetshenziswe ngokucubungula izithombe ngokusekelwe kumaphakheji e-ImageMagick kanye ne-GraphicsMagick ngokuwadlulisela ifayela le-JPEG noma le-PNG eliqukethe ikhodi ye-PostScript esikhundleni sesithombe (ifayela elinjalo lizocutshungulwa ku-Ghostscript, njengoba uhlobo lwe-MIME lubonwa okuqukethwe, futhi ngaphandle kokuthembela esandisweni).
Source: opennet.ru