[gs-devel] KDE security update
Ralph Giles
ralph.giles at artifex.com
Thu Apr 10 07:40:32 PDT 2003
I just received this through the fink-announce list. KDE has posted a
security advisory (and patches) for their ghostscript wrappers. The
patches look like they're protecting against tmp attacks and (only
now!) turning on -dSAFER and -dPARANOIDSAFER.
http://www.kde.org/info/security/advisory-20030409-1.txt
Neither helps with the pipe-launch attack, unfortunately.
-r
More information about the gs-devel
mailing list