1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5760-1] ghostscript security update

    From Salvatore Bonaccorso@21:1/5 to All on Thu Aug 29 17:30:01 2024
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5760-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso August 29, 2024 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : ghostscript
    CVE ID : CVE-2024-29506 CVE-2024-29507 CVE-2024-29508 CVE-2024-29509

    Multiple security issues were discovered in Ghostscript, the GPL
    PostScript/PDF interpreter, which could result in denial of service and potentially the execution of arbitrary code if malformed document files
    are processed.

    For the stable distribution (bookworm), these problems have been fixed in version 10.0.0~dfsg-11+deb12u5.

    We recommend that you upgrade your ghostscript packages.

    For the detailed security status of ghostscript please refer to its
    security tracker page at: https://security-tracker.debian.org/tracker/ghostscript

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmbQku1fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0Ryhw/9HZ3Ex7IRaIwKZvqanBkgjGakkk00PQES+3I9QRUMDuyKceUXxMZd3WoY GHjcvsIQmSHykmAxkuAZgBIE27eA7x/O/q12l5DekmNOaXNinhsDqWFfOXm+Ge2c A9UiyEIK5jl+Oef/NFoJeV4c+I5lbUoASdvudrg/GPuX182z7RHa3FN3d4ufXokU 3gIDoWE72ToS79fKC6esLNpPxgJ5YyIJKZcyY8++SDhE+752BZQkKgyq6ci5n5oP AuPnxu93G8L73RLYrh1SeS3P5aCyEDFw6O5WNVLAMBIq8EPaSmuEWplH6uS7OIjb iGlo+WEaeniHMyKeCbUndwFlFqnL02SHqjXnUSK13BLgElw1pIAqXq8BUqcWl/RS iZO9f52t4kC9Ew8hhCw1rZmHDP0DICMe2ZiXFAPe7gdGOrc3fkb/gmtCgPOv1sV4 4Vl/Rb+PyDmAig26LyUD2F4ivVuMJMzFbM0ED0KFYT+bNx9WLcVPHA3TTj3td+pb 2ixpTb96NTN5rSB70EkhC5MUFCaUQX9s6W8lse6wlVnLkMKtf67R8HqyVoTrZ3/M z0un9hMSF6w/dA+CrOkUdoCcD+HloKPcMfP/W1ziGoO5cFkdr+fEwHfIxXwCJCY5 DU1dQXqrJfM5Wfp4XP6scwj8qt9JWMeOauxg9YhEQRwfWd9FIX4=
    =NB+2
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)