Advisories MDKSA-2007:208: Updated ghostscript packages fix vulnerability

[paul]

A function in the JasPer JPEG-2000 library before 1.900 could allow

a remote user-assisted attack to cause a crash and possibly corrupt

the heap via malformed image files.

 

Newer versions of ghostscript contain an embedded copy of libjasper

and as such is vulnerable to this issue.

 

Updated packages have been patched to prevent this issue.