The gs_type2_interpret function in Ghostscript allows remote attackers to cause a denial of service (incorrect pointer dereference and application crash) via crafted font data in a compressed data stream, aka bug 691043.
https://rhn.redhat.com/errata/RHSA-2012-0095.html
http://www.kb.cert.org/vuls/id/538191
http://security.gentoo.org/glsa/glsa-201412-17.xml
http://rhn.redhat.com/errata/RHSA-2012-0096.html
http://ghostscript.com/pipermail/gs-cvs/2010-January/010333.html