Fix multiple integer overflows and lack of boundary check found

and marked as CVE-2009-583 and CVE-2009-584:

CVE-2009-583:

  Multiple integer overflows in icc.c in the International Color
  Consortium (ICC) Format library (aka icclib), as used in
  Ghostscript 8.64 and earlier and Argyll Color Management
  System (CMS) 1.0.3 and earlier, allow context-dependent
  attackers to cause a denial of service (heap-based buffer
  overflow and application crash) or possibly execute arbitrary
  code by using a device file for a translation request that
  operates on a crafted image file and targets a certain "native
  color space," related to an ICC profile in a (1) PostScript
  or (2) PDF file with embedded images.

CVE-2009-584:

  icc.c in the International Color Consortium (ICC) Format
  library (aka icclib), as used in Ghostscript 8.64 and earlier
  and Argyll Color Management System (CMS) 1.0.3 and earlier,
  allows context-dependent attackers to cause a denial of
  service (application crash) or possibly execute arbitrary code
  by using a device file for processing a crafted image file
  associated with large integer values for certain sizes, related
  to an ICC profile in a (1) PostScript or (2) PDF file with
  embedded images.

Security:	CVE-2009-583
Security:	CVE-2009-584
Approved by:	portmgr (pav)

1 files changed, 1 insertions, 1 deletions

diff --git a/print/ghostscript8/Makefile b/print/ghostscript8/Makefile
index 81d2a9d387f1..e82a193fa015 100644
--- a/print/ghostscript8/Makefile
+++ b/print/ghostscript8/Makefile
@@ -7,7 +7,7 @@
 
 PORTNAME=	ghostscript8
 PORTVERSION=	8.64
-PORTREVISION=	0
+PORTREVISION=	1
 CATEGORIES=	print
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE:S/$/:gs_srcs/} \
 		ftp://mirror.cs.wisc.edu/pub/mirrors/ghost/GPL/gs${PORTVERSION:S/.//}/:gs_srcs \