Описание
Security update for ghostscript
This update for ghostscript fixes the following issues:
- CVE-2025-27831: Fixed text buffer overflow in DOCXWRITE TXTWRITE device via long characters to devices/vector/doc_common.c (bsc#1240075)
- CVE-2025-27832: Fixed compression buffer overflow in NPDL device for contrib/japanese/gdevnpdl.c (bsc#1240077)
- CVE-2025-27835: Fixed buffer overflow occurs when converting glyphs to Unicode in psi/zbfont.c (bsc#1240080)
- CVE-2025-27836: Fixed Print buffer overflow in BJ10V device in contrib/japanese/gdev10v.c (bsc#1240081)
Список пакетов
SUSE Linux Enterprise Server 12 SP5-LTSS
ghostscript-9.52-23.89.1
ghostscript-devel-9.52-23.89.1
ghostscript-x11-9.52-23.89.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
ghostscript-9.52-23.89.1
ghostscript-devel-9.52-23.89.1
ghostscript-x11-9.52-23.89.1
Ссылки
- Link for SUSE-SU-2025:1118-1
- E-Mail link for SUSE-SU-2025:1118-1
- SUSE Security Ratings
- SUSE Bug 1240075
- SUSE Bug 1240077
- SUSE Bug 1240080
- SUSE Bug 1240081
- SUSE CVE CVE-2025-27831 page
- SUSE CVE CVE-2025-27832 page
- SUSE CVE CVE-2025-27835 page
- SUSE CVE CVE-2025-27836 page
Описание
An issue was discovered in Artifex Ghostscript before 10.05.0. The DOCXWRITE TXTWRITE device has a text buffer overflow via long characters to devices/vector/doc_common.c.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-devel-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-x11-9.52-23.89.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ghostscript-9.52-23.89.1
Ссылки
- CVE-2025-27831
- SUSE Bug 1240075
Описание
An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-devel-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-x11-9.52-23.89.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ghostscript-9.52-23.89.1
Ссылки
- CVE-2025-27832
- SUSE Bug 1240077
Описание
An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs when converting glyphs to Unicode in psi/zbfont.c.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-devel-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-x11-9.52-23.89.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ghostscript-9.52-23.89.1
Ссылки
- CVE-2025-27835
- SUSE Bug 1240080
Описание
An issue was discovered in Artifex Ghostscript before 10.05.0. The BJ10V device has a Print buffer overflow in contrib/japanese/gdev10v.c.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-devel-9.52-23.89.1
SUSE Linux Enterprise Server 12 SP5-LTSS:ghostscript-x11-9.52-23.89.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:ghostscript-9.52-23.89.1
Ссылки
- CVE-2025-27836
- SUSE Bug 1240081