Описание
Security update for ghostscript
This update for ghostscript to version 9.26a fixes the following issues:
Security issue fixed:
- CVE-2019-6116: subroutines within pseudo-operators must themselves be pseudo-operators (bsc#1122319)
This update was imported from the SUSE:SLE-12:Update update project.
Список пакетов
openSUSE Leap 42.3
ghostscript-9.26a-14.15.1
ghostscript-devel-9.26a-14.15.1
ghostscript-mini-9.26a-14.15.1
ghostscript-mini-devel-9.26a-14.15.1
ghostscript-x11-9.26a-14.15.1
libspectre-0.2.7-17.7.1
libspectre-devel-0.2.7-17.7.1
libspectre1-0.2.7-17.7.1
Ссылки
- E-Mail link for openSUSE-SU-2019:0103-1
- SUSE Security Ratings
Описание
In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.
Затронутые продукты
openSUSE Leap 42.3:ghostscript-9.26a-14.15.1
openSUSE Leap 42.3:ghostscript-devel-9.26a-14.15.1
openSUSE Leap 42.3:ghostscript-mini-9.26a-14.15.1
openSUSE Leap 42.3:ghostscript-mini-devel-9.26a-14.15.1
Ссылки
- CVE-2019-6116
- SUSE Bug 1122319
- SUSE Bug 1129186
- SUSE Bug 1134156