ghostscript 9.50~dfsg-5ubuntu4.12 source package in Ubuntu
Changelog
ghostscript (9.50~dfsg-5ubuntu4.12) focal-security; urgency=medium
* SECURITY UPDATE: Policy bypass via improperly checked eexec seed
- debian/patches/CVE-2023-52722.patch: Prevent eexec seeds other than
Type 1 standard when SAFER mode is used in zmisc1.c.
- CVE-2023-52722
* SECURITY UPDATE: Arbitrary code execution via uniprint device
- debian/patches/CVE-2024-29510.patch: Prevent changes to uniprint device
argument strings after SAFER is activated in gdevupd.c.
- CVE-2024-29510
* SECURITY UPDATE: Path traversal and arbitrary code execution via improperly
checked path arguments
- debian/patches/CVE-2024-33869-part1.patch: Check that a current working
directory specifier is valid before stripping it from gpmisc.c.
- debian/patches/CVE-2024-33869-part2.patch: Check that a current working
directory specifier is valid before stripping it from gpmisc.c.
- CVE-2024-33869
* SECURITY UPDATE: Path traversal via improperly checked path arguments
- debian/patches/CVE-2024-33870.patch: Add a check for parent directory
prefixes when handling relative paths in gpmisc.c.
- CVE-2024-33870
* SECURITY UPDATE: Arbitrary code execution via custom driver library
- debian/patches/CVE-2024-33871.patch: Prevent changes to parameter that
specifies the names of dynamic libraries to be loaded by the opvp/oprp
device in gdevopvp.c
- CVE-2024-33871
-- Chris Kim <email address hidden> Tue, 04 Jun 2024 08:30:59 -0700
Upload details
- Uploaded by:
- Chris Kim
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- text
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | main | text | |
| Focal | security | main | text |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ghostscript_9.50~dfsg.orig.tar.xz | 18.3 MiB | 6500e127469df5b3dfd18e4b0bd660a716486b68ff2c0927fe9772f36cb18c73 |
| ghostscript_9.50~dfsg-5ubuntu4.12.debian.tar.xz | 137.9 KiB | e95d62b8de0c0980a68fbf0d321d84b5f465cf724a153862956993a36138a5d6 |
| ghostscript_9.50~dfsg-5ubuntu4.12.dsc | 2.9 KiB | af240cc1e6b3a3f683358e7f712d85e19d7a34d3454fdde5c38466368fae0eb3 |
Available diffs
Binary packages built by this source
- ghostscript: interpreter for the PostScript language and for PDF
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
Furthermore, it can render PostScript and PDF files as graphics to be
printed on non-PostScript printers. Supported printers include common
dot-matrix, inkjet and laser models.
- ghostscript-dbg: interpreter for the PostScript language and for PDF - Debug symbols
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
This package contains the debugging symbols for ghostscript,
ghostscript-x, and libgs9.
- ghostscript-doc: interpreter for the PostScript language and for PDF - Documentation
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
This package contains documentation for GPL Ghostscript, mainly
targeted developers and advanced users.
- ghostscript-x: interpreter for the PostScript language and for PDF - X11 support
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
This package contains the GPL Ghostscript output device for X11.
- libgs-dev: interpreter for the PostScript language and for PDF - Development Files
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
This package provides the development files for the GPL Ghostscript
library which makes the facilities of GPL Ghostscript available to
applications.
- libgs9: interpreter for the PostScript language and for PDF - Library
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
This package provides the Ghostscript library which makes the
facilities of GPL Ghostscript available to applications.
- libgs9-common: interpreter for the PostScript language and for PDF - common files
GPL Ghostscript is used for PostScript/PDF preview and printing.
Usually as a back-end to a program such as ghostview, it can display
PostScript and PDF documents in an X11 environment.
.
This package provides common architecture-independent files needed by
the GPL Ghostscript library.
.
By default, GPL Ghostscript uses a font from the fonts-droid package to
approximate glyphs in PDFs for which the requested CJK TrueType font
is missing. If the fonts-droid package is not installed, these glyphs
will be rendered as bullets.
