Headline
Debian Security Advisory 5760-1
Debian Linux Security Advisory 5760-1 - Multiple security issues were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which could result in denial of service and potentially the execution of arbitrary code if malformed document files are processed.
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5760-1 [email protected]://www.debian.org/security/ Salvatore BonaccorsoAugust 29, 2024 https://www.debian.org/security/faq- -------------------------------------------------------------------------Package : ghostscriptCVE ID : CVE-2024-29506 CVE-2024-29507 CVE-2024-29508 CVE-2024-29509Multiple security issues were discovered in Ghostscript, the GPLPostScript/PDF interpreter, which could result in denial of service andpotentially the execution of arbitrary code if malformed document filesare processed.For the stable distribution (bookworm), these problems have been fixed inversion 10.0.0~dfsg-11+deb12u5.We recommend that you upgrade your ghostscript packages.For the detailed security status of ghostscript please refer to itssecurity tracker page at:https://security-tracker.debian.org/tracker/ghostscriptFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: [email protected] PGP SIGNATURE-----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NB+2-----END PGP SIGNATURE-----Related news
Ubuntu Security Notice 6897-1 - It was discovered that Ghostscript incorrectly handled certain long PDF filter names. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. It was discovered that Ghostscript incorrectly handled certain API parameters. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 24.04 LTS.
Ubuntu Security Notice 6897-1 - It was discovered that Ghostscript incorrectly handled certain long PDF filter names. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. It was discovered that Ghostscript incorrectly handled certain API parameters. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 24.04 LTS.
Ubuntu Security Notice 6897-1 - It was discovered that Ghostscript incorrectly handled certain long PDF filter names. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. It was discovered that Ghostscript incorrectly handled certain API parameters. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 24.04 LTS.
Ubuntu Security Notice 6897-1 - It was discovered that Ghostscript incorrectly handled certain long PDF filter names. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. It was discovered that Ghostscript incorrectly handled certain API parameters. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 24.04 LTS.