Stay Connected:

ELSA-2019-0633

ELSA-2019-0633 - ghostscript security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-03-21

Description


[9.07-31.el7_6.10]
- Resolves: #1673915 - ghostscript: Regression: double comment chars
'%' in gs_init.ps leading to missing metadata
- Resolves: #1678171 - CVE-2019-3835 ghostscript: superexec operator
is available (700585)
- Resolves: #1680025 - CVE-2019-3838 ghostscript: forceput in DefineResource
is still accessible (700576)


Related CVEs


CVE-2019-3835
CVE-2019-3838

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) ghostscript-9.07-31.el7_6.10.src.rpme1b8cbb2d04f7c8ee92146ff618ef7fbELBA-2020-3945
ghostscript-9.07-31.el7_6.10.aarch64.rpma22a25ea1aac9714112b24c53bb19285ELBA-2020-3945
ghostscript-cups-9.07-31.el7_6.10.aarch64.rpm2770dcdbee85e9c43aa60cd66853ad9dELBA-2020-3945
ghostscript-devel-9.07-31.el7_6.10.aarch64.rpmfe29d7b6c72fcd77844a22f2938b779cELSA-2019-1017
ghostscript-doc-9.07-31.el7_6.10.noarch.rpm6caf76d90d1b34b6369e5d434021ec53ELBA-2020-3945
ghostscript-gtk-9.07-31.el7_6.10.aarch64.rpm3fad29ad1fbb1f53d703488fe2f73eadELBA-2020-3945
Oracle Linux 7 (x86_64) ghostscript-9.07-31.el7_6.10.src.rpme1b8cbb2d04f7c8ee92146ff618ef7fbELBA-2020-3945
ghostscript-9.07-31.el7_6.10.i686.rpmda1fe79381e5e39b3f95b03ee5e16c03ELBA-2020-3945
ghostscript-9.07-31.el7_6.10.x86_64.rpma3e8c2354bafe31a1f67d8625d307b9dELBA-2020-3945
ghostscript-cups-9.07-31.el7_6.10.x86_64.rpm1a64e5763b61d9cdc6220b250f9fe99dELBA-2020-3945
ghostscript-devel-9.07-31.el7_6.10.i686.rpm0b1b0fd0856e2314870673c203067b87ELSA-2019-1017
ghostscript-devel-9.07-31.el7_6.10.x86_64.rpm475257a4848173cf3938f55b060eb513ELSA-2019-1017
ghostscript-doc-9.07-31.el7_6.10.noarch.rpm6caf76d90d1b34b6369e5d434021ec53ELBA-2020-3945
ghostscript-gtk-9.07-31.el7_6.10.x86_64.rpm43085723128bdbbc6f6163397d533d92ELBA-2020-3945



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights