[ol7_optional_latest] ghostscript-gtk-9.07-31.el7_6.6.aarch64

Name:	ghostscript-gtk
Version:	9.07
Release:	31.el7_6.6
Architecture:	aarch64
Group:	Applications/Publishing
Size:	69640
License:	AGPLv3+ and Redistributable, no modification permitted
RPM:	ghostscript-gtk-9.07-31.el7_6.6.aarch64.rpm
Source RPM:	ghostscript-9.07-31.el7_6.6.src.rpm
Build Date:	Mon Dec 17 2018
Build Host:	ca-buildarm03.us.oracle.com
Vendor:	Oracle America
URL:	http://www.ghostscript.com/
Summary:	A GTK-enabled PostScript interpreter and renderer
Description:	A GTK-enabled version of Ghostscript, called 'gsx'.

Changelog (Show File list) (Show related packages)

Mon Dec 10 2018 Martin Osvald <mosvald@redhat.com> - 9.07-31.el7_6.6

- Resolves: #1657822 - ghostscript: Regression: Warning: Dropping incorrect
  smooth shading object (Error: /rangecheck in --run--)

Wed Dec 05 2018 Martin Osvald <mosvald@redhat.com> - 9.07-31.el7_6.5

- Resolves: #1654621 - CVE-2018-16541 ghostscript: incorrect free logic in
  pagedevice replacement (699664)
- Resolves: #1650210 - CVE-2018-17183 ghostscript: User-writable error
  exception table
- Resolves: #1645516 - CVE-2018-18073 ghostscript: saved execution stacks
  can leak operator arrays
- Resolves: #1648891 - CVE-2018-17961 ghostscript: saved execution stacks
  can leak operator arrays (incomplete fix for CVE-2018-17183)
- Resolves: #1643115 - CVE-2018-18284 ghostscript: 1Policy operator
  allows a sandbox protection bypass
- Resolves: #1655937 - CVE-2018-19134 ghostscript: Type confusion in
  setpattern (700141)

Thu Nov 29 2018 Martin Osvald <mosvald@redhat.com> - 9.07-31.el7_6.4

- Resolves: #1651149 - CVE-2018-15911 ghostscript: uninitialized memory
  access in the aesdecode operator (699665)
- Resolves: #1650060 - CVE-2018-16802 ghostscript: Incorrect "restoration of
  privilege" checking when running out of stack during exception handling
- Resolves: #1652935 - CVE-2018-19409 ghostscript: Improperly implemented
  security check in zsetdevice function in psi/zdevice.c

Wed Nov 28 2018 Martin Osvald <mosvald@redhat.com> - 9.07-31.el7_6.3

- Resolves: #1654290 ghostscript update breaks xdvi (gs: Error: /undefined in flushpage)

Mon Nov 26 2018 Martin Osvald <mosvald@redhat.com> - 9.07-31.el7_6.2

- Resolves: #1652901 - CVE-2018-16863 ghostscript: incomplete fix for
  CVE-2018-16509

Wed Nov 14 2018 Martin Osvald <mosvald@redhat.com> - 9.07-31.el7_6.1

- Remove as many non-standard operators as possible to make the codebase
  closer to upstream for later CVEs
- Resolves: #1621383 - CVE-2018-16511 ghostscript: missing type check in type
  checker (699659)
- Resolves: #1649721 - CVE-2018-16539 ghostscript: incorrect access checking
  in temp file handling to disclose contents of files (699658) 
- Resolves: #1621159 - CVE-2018-15908 ghostscript: .tempfile file permission
  issues (699657)
- Resolves: #1621381 - CVE-2018-15909 ghostscript: shading_param incomplete
  type checking (699660)

Mon Sep 10 2018 David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.07-31

- Added security fixes for:
  - CVE-2018-16509 (bug #1621158)
  - CVE-2018-15910 (bug #1621160)
  - CVE-2018-16542 (bug #1621382)

Tue Apr 17 2018 David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.07-30

- Fix MediaPosition, ManualFeed and MediaType with pxl devices (bug #1551782)

Tue Jul 25 2017 David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.07-29

- Fix rare Segmentation fault when converting PDF to PNG (bug #1473337)
- Raise the default VMThreshold from 1Mb to 8Mb (bug #1479852)

Thu May 11 2017 David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.07-28
```
- Security fix for CVE-2017-8291 updated to address SIGSEGV
```