RH summary [1]: The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript allows attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file. Upstream patch [2] Upstream ref [3] [1] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-10219 [2] http://git.ghostscript.com/?p=ghostpdl.git;h=4bef1a1d32e29b68855616020dbff574b9cda08f [3] https://bugs.ghostscript.com/show_bug.cgi?id=697453
Version bump pushed.
Added to an existing GLSA Request.
This issue was resolved and addressed in GLSA 201708-06 at https://security.gentoo.org/glsa/201708-06 by GLSA coordinator Thomas Deutschmann (whissi).
Re-opening for remaining architecture.
https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=cf8f468602a503510b8ccb45b2a0c80f37c83949