SUSE-SU-2024:1590-1

Опубликовано: 10 мая 2024

Источник: suse-cvrf

Описание

Security update for ghostscript

This update for ghostscript fixes the following issues:

CVE-2023-52722: Do not allow eexec seeds other than the Type 1 standard while using SAFER mode (bsc#1223852).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP5

ghostscript-9.52-150000.188.1

ghostscript-devel-9.52-150000.188.1

ghostscript-x11-9.52-150000.188.1

openSUSE Leap 15.5

ghostscript-9.52-150000.188.1

ghostscript-devel-9.52-150000.188.1

ghostscript-x11-9.52-150000.188.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20241590-1/
Link for SUSE-SU-2024:1590-1
https://lists.suse.com/pipermail/sle-security-updates/2024-May/018501.html
E-Mail link for SUSE-SU-2024:1590-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1223852
SUSE Bug 1223852
https://www.suse.com/security/cve/CVE-2023-52722/
SUSE CVE CVE-2023-52722 page

Описание

An issue was discovered in Artifex Ghostscript before 10.03.1. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP5:ghostscript-9.52-150000.188.1

SUSE Linux Enterprise Module for Basesystem 15 SP5:ghostscript-devel-9.52-150000.188.1

SUSE Linux Enterprise Module for Basesystem 15 SP5:ghostscript-x11-9.52-150000.188.1

openSUSE Leap 15.5:ghostscript-9.52-150000.188.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-52722.html
CVE-2023-52722
https://bugzilla.suse.com/1223852
SUSE Bug 1223852

SUSE-SU-2024:1590-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP5

openSUSE Leap 15.5

Ссылки

Уязвимость: CVE-2023-52722

Описание

Затронутые продукты

Ссылки