exploitDog

RLSA-2025:8421

Опубликовано: 29 июл. 2025

Источник: rocky

Оценка: Moderate

Описание

Moderate: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed.

Security Fix(es):

Ghostscript: NPDL device: Compression buffer overflow (CVE-2025-27832)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
libgs	i686	17.el8_10	libgs-9.27-17.el8_10.i686.rpm
libgs	x86_64	17.el8_10	libgs-9.27-17.el8_10.x86_64.rpm
ghostscript	x86_64	17.el8_10	ghostscript-9.27-17.el8_10.x86_64.rpm
ghostscript-x11	x86_64	17.el8_10	ghostscript-x11-9.27-17.el8_10.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2354949
Red Hat - 2354949

Связанные уязвимости

CVE-2025-27832

CVSS3: 9.8

ubuntu

7 месяцев назад

An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c.

CVE-2025-27832

CVSS3: 5.5

redhat

7 месяцев назад

An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c.

CVE-2025-27832

CVSS3: 9.8

nvd

7 месяцев назад

An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c.

CVE-2025-27832

CVSS3: 9.8

debian

7 месяцев назад

An issue was discovered in Artifex Ghostscript before 10.05.0. The NPD ...

RLSA-2025:7593

rocky

около 1 месяца назад

Moderate: ghostscript security update