Описание
ELSA-2019-0971: ghostscript security update (IMPORTANT)
[9.25-2.1]
- Resolves: #1692798 - CVE-2019-3839 ghostscript: missing attack vector protections for CVE-2019-6116
- Resolves: #1678170 - CVE-2019-3835 ghostscript: superexec operator is available (700585)
- Resolves: #1691414 - CVE-2019-3838 ghostscript: forceput in DefineResource is still accessible (700576)
- fix included for ghostscript: Regression: double comment chars '%' in gs_init.ps leading to missing metadata
- fix for pdf2dsc regression added to allow fix for CVE-2019-3839
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
ghostscript
9.25-2.el8_0.1
ghostscript-doc
9.25-2.el8_0.1
ghostscript-tools-dvipdf
9.25-2.el8_0.1
ghostscript-tools-fonts
9.25-2.el8_0.1
ghostscript-tools-printing
9.25-2.el8_0.1
ghostscript-x11
9.25-2.el8_0.1
libgs
9.25-2.el8_0.1
libgs-devel
9.25-2.el8_0.1
Oracle Linux x86_64
ghostscript
9.25-2.el8_0.1
ghostscript-doc
9.25-2.el8_0.1
ghostscript-tools-dvipdf
9.25-2.el8_0.1
ghostscript-tools-fonts
9.25-2.el8_0.1
ghostscript-tools-printing
9.25-2.el8_0.1
ghostscript-x11
9.25-2.el8_0.1
libgs
9.25-2.el8_0.1
libgs-devel
9.25-2.el8_0.1
