exploitDog

ELSA-2018-3650

Опубликовано: 26 нояб. 2018

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2018-3650: ghostscript security update (IMPORTANT)

[9.07-31.el7_6.1]

Remove as many non-standard operators as possible to make the codebase closer to upstream for later CVEs
Resolves: #1621383 - CVE-2018-16511 ghostscript: missing type check in type checker (699659)
Resolves: #1621159 - CVE-2018-15908 ghostscript: .tempfile file permission issues (699657)
Resolves: #1621381 - CVE-2018-15909 ghostscript: shading_param incomplete type checking (699660)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

ghostscript

9.07-31.el7_6.1

ghostscript-cups

9.07-31.el7_6.1

ghostscript-devel

9.07-31.el7_6.1

ghostscript-doc

9.07-31.el7_6.1

ghostscript-gtk

9.07-31.el7_6.1

Oracle Linux x86_64

ghostscript

9.07-31.el7_6.1

ghostscript-cups

9.07-31.el7_6.1

ghostscript-devel

9.07-31.el7_6.1

ghostscript-doc

9.07-31.el7_6.1

ghostscript-gtk

9.07-31.el7_6.1

Связанные CVE

Ссылки на источники

Связанные уязвимости

openSUSE-SU-2018:3038-1

suse-cvrf

около 7 лет назад

Security update for ghostscript

openSUSE-SU-2018:3036-1

suse-cvrf

около 7 лет назад

Security update for ghostscript

SUSE-SU-2018:2976-1

suse-cvrf

около 7 лет назад

Security update for ghostscript

SUSE-SU-2018:2975-3

suse-cvrf

больше 6 лет назад

Security update for ghostscript

SUSE-SU-2018:2975-2

suse-cvrf

около 7 лет назад

Security update for ghostscript