ELSA-2019-2586

Опубликовано: 02 сент. 2019

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2019-2586: ghostscript security update (IMPORTANT)

[9.25-2.2]

Resolves: #1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdf_hook_DSC_Creator (701445)
Resolves: #1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams (701444)
Resolves: #1744003 - CVE-2019-14813 ghostscript: Safer Mode Bypass by .forceput Exposure in setsystemparams (701443)
Resolves: #1744228 - CVE-2019-14817 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfexectoken and other procedures (701450)

[9.25-2.1]

Resolves: #1737338 - CVE-2019-10216 ghostscript: -dSAFER escape via .buildfont1 (701394)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

ghostscript

9.25-2.el7_7.2

ghostscript-cups

9.25-2.el7_7.2

ghostscript-doc

9.25-2.el7_7.2

ghostscript-gtk

9.25-2.el7_7.2

libgs

9.25-2.el7_7.2

libgs-devel

9.25-2.el7_7.2

Oracle Linux x86_64

ghostscript

9.25-2.el7_7.2

ghostscript-cups

9.25-2.el7_7.2

ghostscript-doc

9.25-2.el7_7.2

ghostscript-gtk

9.25-2.el7_7.2

libgs

9.25-2.el7_7.2

libgs-devel

9.25-2.el7_7.2

Связанные CVE

Ссылки на источники

Связанные уязвимости

ELSA-2019-2591

oracle-oval

больше 6 лет назад

ELSA-2019-2591: ghostscript security update (IMPORTANT)

openSUSE-SU-2019:2223-1

suse-cvrf

больше 6 лет назад

Security update for ghostscript

openSUSE-SU-2019:2222-1

suse-cvrf

больше 6 лет назад

Security update for ghostscript

SUSE-SU-2019:2478-1

suse-cvrf

больше 6 лет назад

Security update for ghostscript

SUSE-SU-2019:2460-1

suse-cvrf

больше 6 лет назад

Security update for ghostscript