ghostscript: add upstream security fixes for CVE-2017-8291
CVE-2017-8291 - Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass
and remote command execution via a "/OutputFile (%pipe%" substring in a
crafted .eps document that is an input to the gs program, as exploited in
the wild in April 2017.
For more details, see https://bugzilla.suse.com/show_bug.cgi?id=
1036453
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit
874becfd019bc8f4e126684d08c4164e984b11c3)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>