http://bugzilla.novell.com/show_bug.cgi?id=608071 http://bugzilla.novell.com/show_bug.cgi?id=608071#c15 Johannes Meixner <jsmeix@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Platform|x86-64 |All --- Comment #15 from Johannes Meixner <jsmeix@novell.com> 2010-05-28 08:02:55 UTC --- When there is any kind of security issue in Ghostscript we must check to what extent the printing system might be affected: The printing filter /usr/bin/foomatic-rip which is used in the printing system as some kind of wrapper/frontend when a Ghostscript printer driver is used calls Ghostscript as follows: -------------------------------------------------------------------- gs -sstdout=%stderr -dBATCH -dPARANOIDSAFER -dNOPAUSE \ -sDEVICE=ljet4 -dDEVICEWIDTHPOINTS=595 -dDEVICEHEIGHTPOINTS=842 \ -r600x600 -sOutputFile=%stdout -f -_ -------------------------------------------------------------------- i.e. like gv with -dPARANOIDSAFER but without -P- As far as I understand http://www.ghostscript.com/doc/7.07/Use.htm -------------------------------------------------------------------- -dPARANOIDSAFER Disables reading of files other than %stdin, those given as a command line argument, or those contained on one of the paths given by LIBPATH and FONTPATH and specified by the system params /FontResourceDir and /GenericResourceDir. -dPARANOIDSAFER implies -dSAFER -------------------------------------------------------------------- -dPARANOIDSAFER does not avoid that Ghostscript may read stuff from the current directory so that an additional -P- is still needed. On the other hand the currrent working directory when printing filters are executed is "/" where only root can create sub-directories and files so that from my current point of view the printing system seems to be secure. Furthermore http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583316#10 ------------------------------------------------------------------ I have been using a wrapper around gs that sets both -P- -dSAFER. That seems to work fine for viewing PS files, but does NOT allow gv to work for PDFs ------------------------------------------------------------------- indicates that we should pay particular attention if "-P-" becomes our default whether or not Ghostscript then still works for PDFs. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.