Bugzilla – Bug 871097
VUL-0: CVE-2014-0466: a2ps: fixps does not use -dSAFER
Last modified: 2014-05-02 15:56:42 UTC
via rh bugzilla Brian M Carlson reported that a2ps's fixps script does not invoke gs with the -dSAFER option. Running fixps on a malicious PostScript file could result in files being deleted or arbitrary commands being executed with the privileges of the user running fixps. A possible patch from Debian is available from the Debian bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=12;filename=a2ps-4.14-1.3-nmu.diff;att=1;bug=742902 https://bugzilla.redhat.com/show_bug.cgi?id=1082410 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0466
This is an autogenerated message for OBS integration: This bug (871097) was mentioned in https://build.opensuse.org/request/show/228269 Factory / a2ps
This is an autogenerated message for OBS integration: This bug (871097) was mentioned in https://build.opensuse.org/request/show/228288 13.1 / a2ps https://build.opensuse.org/request/show/228297 12.3 / a2ps
The SWAMPID for this issue is 56836. This issue was rated as moderate. Please submit fixed packages until 2014-04-14. When done, please reassign the bug to security-team@suse.de. Patchinfo will be handled by security team.
Affected packages: SLE-9-SP3-TERADATA: a2ps SLE-10-SP3-TERADATA: a2ps SLE-11-SP1: a2ps SLE-11-SP3: a2ps
(In reply to comment #5) SLE-9-SP3-TERADATA: a2ps SLE-10-SP3-TERADATA: a2ps an isc se a2ps does not show TERADATA
bugbot adjusting priority
openSUSE-SU-2014:0499-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 871097 CVE References: CVE-2014-0466 Sources used: openSUSE 13.1 (src): a2ps-4.13-1356.4.1 openSUSE 12.3 (src): a2ps-4.13-1353.4.1
Update released for: a2ps, a2ps-debuginfo, a2ps-debugsource, a2ps-devel Products: SLE-DEBUGINFO 11-SP1-TERADATA (x86_64) SLE-SERVER 11-SP1-TERADATA (x86_64)
Update released for: a2ps Products: SLE-SERVER 10-SP3-TERADATA (x86_64)
Update released for: a2ps Products: SUSE-CORE 9-SP3-TERADATA (x86_64)
Update released for: a2ps, a2ps-debuginfo, a2ps-debugsource, a2ps-devel Products: SLE-DEBUGINFO 11-SP3 (i386, ia64, ppc64, s390x, x86_64) SLE-DESKTOP 11-SP3 (i386, x86_64) SLE-SDK 11-SP3 (i386, ia64, ppc64, s390x, x86_64) SLE-SERVER 11-SP3 (i386, ia64, ppc64, s390x, x86_64) SLES4VMWARE 11-SP3 (i386, x86_64)
SUSE-SU-2014:0581-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 871097 CVE References: CVE-2014-0466 Sources used: SUSE Linux Enterprise Software Development Kit 11 SP3 (src): a2ps-4.13-1326.37.1 SUSE Linux Enterprise Server 11 SP3 for VMware (src): a2ps-4.13-1326.37.1 SUSE Linux Enterprise Server 11 SP3 (src): a2ps-4.13-1326.37.1 SUSE Linux Enterprise Desktop 11 SP3 (src): a2ps-4.13-1326.37.1
Fixed and released. Closing bug.