diff options
| author | Jean-Pierre Giraud <jean-pierregiraud@neuf.fr> | 2023-12-15 23:56:29 +0100 |
|---|---|---|
| committer | Jean-Pierre Giraud <jean-pierregiraud@neuf.fr> | 2023-12-15 23:56:29 +0100 |
| commit | 1fbf619097cc4dbb2c91d95ee581b89eb984c742 (patch) | |
| tree | 7498621899bef65ffdcca52381a95ce370b9569f /english/security | |
| parent | cebdd5c754b5268dfe397bc7322b4201bf6cedb4 (diff) | |
[SECURITY] [DSA 5578-1] ghostscript security update
Diffstat (limited to 'english/security')
| -rw-r--r-- | english/security/2023/dsa-5578.data | 13 | ||||
| -rw-r--r-- | english/security/2023/dsa-5578.wml | 21 |
2 files changed, 34 insertions, 0 deletions
diff --git a/english/security/2023/dsa-5578.data b/english/security/2023/dsa-5578.data new file mode 100644 index 00000000000..a98165b4425 --- /dev/null +++ b/english/security/2023/dsa-5578.data @@ -0,0 +1,13 @@ +<define-tag pagetitle>DSA-5578-1 ghostscript</define-tag> +<define-tag report_date>2023-12-15</define-tag> +<define-tag secrefs>CVE-2023-46751</define-tag> +<define-tag packages>ghostscript</define-tag> +<define-tag isvulnerable>yes</define-tag> +<define-tag fixed>yes</define-tag> +<define-tag fixed-section>no</define-tag> + +#use wml::debian::security + + + +</dl> diff --git a/english/security/2023/dsa-5578.wml b/english/security/2023/dsa-5578.wml new file mode 100644 index 00000000000..9dfc7ebef72 --- /dev/null +++ b/english/security/2023/dsa-5578.wml @@ -0,0 +1,21 @@ +<define-tag description>security update</define-tag> +<define-tag moreinfo> +<p>It was discovered that Ghostscript, the GPL PostScript/PDF interpreter, +does not properly handle errors in the gdev_prn_open_printer_seekable() +function, which could result in the execution of arbitrary commands if +malformed document files are processed.</p> + +<p>For the stable distribution (bookworm), this problem has been fixed in +version 10.0.0~dfsg-11+deb12u3.</p> + +<p>We recommend that you upgrade your ghostscript packages.</p> + +<p>For the detailed security status of ghostscript please refer to its +security tracker page at: +<a href="https://security-tracker.debian.org/tracker/ghostscript">\ +https://security-tracker.debian.org/tracker/ghostscript</a></p> +</define-tag> + +# do not modify the following line +#include "$(ENGLISHDIR)/security/2023/dsa-5578.data" +# $Id: $ |