[CLSA-2025:1744782967] ghostscript: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2025-04-16 05:56:12 UTC
Description:
- CVE-2024-33871: fix arbitrary code execution by restricting Driver parameter to load only known dynamic libraries in gdevopvp.c - CVE-2023-38559: fix buffer overflow flaw in devn_pcx_write_rle() function by adding input validation checks - CVE-2024-29510: fix memory corruption and SAFER sandbox bypass by preventing format string injection with a uniprint device
Updated packages:
  • ghostscript-9.54.0-11.el9_2.tuxcare.els2.i686.rpm
    sha:cd46eadc6e12bf70782f1076ed3cf91434c29c0bee358fb453794a22e15823ee
  • ghostscript-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:a12131e4ad5c1c3ae645a797d0c968e2fb643724d0977dbb4cf03013f4cc1161
  • ghostscript-doc-9.54.0-11.el9_2.tuxcare.els2.noarch.rpm
    sha:5f446848b0b861b8314b0e91334fd4a27213c21e41cd11378af6c2996c1cf3c5
  • ghostscript-gtk-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:97a1192e5b6e32982510cd6a7ec68b7d2ad7859caac3791b0f116e723394b271
  • ghostscript-tools-dvipdf-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:6117436dcf3c66e1b073ba158145ee9b24bc4147210ace280d214bfc6af38b3d
  • ghostscript-tools-fonts-9.54.0-11.el9_2.tuxcare.els2.i686.rpm
    sha:07250544f2bf1b3749ff10bfd06aed29c365bfe7fe055be259f8f81b2c603c1d
  • ghostscript-tools-fonts-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:07ab7ca7859c075a8c4586129bce3c99dc2ecc36aa44ecb82611e06c2cbb089e
  • ghostscript-tools-printing-9.54.0-11.el9_2.tuxcare.els2.i686.rpm
    sha:b122d87d4bfb930f62188cfcbe3f39b8e3b4425abfe0a44f3fb3efda39dacf4f
  • ghostscript-tools-printing-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:4a59da2671ad8ab6aa13aa019f11f8296d60672461a9c3b9593f9ce5f0c14f64
  • ghostscript-x11-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:b9f8d9aab5253bda965f2d6e9ac033c384193c3598cb7d2b8b7199c1fa076132
  • libgs-9.54.0-11.el9_2.tuxcare.els2.i686.rpm
    sha:9ada241d82f6ae9b441be4831168c54a82709d0298add9e63fefc0184a5a5255
  • libgs-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:e1b381f76f2f920de9dd7980e1fdd0904acaaf62707a5e1b0239c549b8d28a1b
  • libgs-devel-9.54.0-11.el9_2.tuxcare.els2.i686.rpm
    sha:f1034eaf8407d818dc3f840aa467f613c6b9fc52a20c35df3ef51ee8ed999cfe
  • libgs-devel-9.54.0-11.el9_2.tuxcare.els2.x86_64.rpm
    sha:939a6c210879a0ebe7d60b519053570d96fa92e22918e632000eb30732162a16
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.