ELSA-2019-0971

ULN >
Oracle Linux Errata repository >
ELSA-2019-0971

ELSA-2019-0971 - ghostscript security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-07-30

Description

[9.25-2.1]
- Resolves: #1692798 - CVE-2019-3839 ghostscript: missing attack vector
protections for CVE-2019-6116
- Resolves: #1678170 - CVE-2019-3835 ghostscript: superexec operator
is available (700585)
- Resolves: #1691414 - CVE-2019-3838 ghostscript: forceput in DefineResource
is still accessible (700576)
- fix included for ghostscript: Regression: double comment chars
'%' in gs_init.ps leading to missing metadata
- fix for pdf2dsc regression added to allow fix for CVE-2019-3839

Related CVEs

CVE-2019-3835

CVE-2019-3838

CVE-2019-3839

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	ghostscript-9.25-2.el8_0.1.src.rpm	7fbd1f6603cd37d15e67fb0e0ff15f8e	-
	ghostscript-9.25-2.el8_0.1.aarch64.rpm	f8f8068cfe0263a40e8013fd33000e26	-
	ghostscript-doc-9.25-2.el8_0.1.noarch.rpm	76992cead2a36fbb3295cedd413ea154	-
	ghostscript-tools-dvipdf-9.25-2.el8_0.1.aarch64.rpm	e1dc30067235da4f38f2b88512f92d9d	-
	ghostscript-tools-fonts-9.25-2.el8_0.1.aarch64.rpm	989cc029c2b013c1ed7384964387c8cd	-
	ghostscript-tools-printing-9.25-2.el8_0.1.aarch64.rpm	ab631198e78033a8003f44bc8c3a21f2	-
	ghostscript-x11-9.25-2.el8_0.1.aarch64.rpm	7f17f755c2db5d1ed6bc45631af27fe2	-
	libgs-9.25-2.el8_0.1.aarch64.rpm	74dab9f1ad6bf1d0fdf3e32c93f04bbb	-
	libgs-devel-9.25-2.el8_0.1.aarch64.rpm	54ed435e829b40670e4b367b736f969c	-

Oracle Linux 8 (x86_64)	ghostscript-9.25-2.el8_0.1.src.rpm	7fbd1f6603cd37d15e67fb0e0ff15f8e	-
	ghostscript-9.25-2.el8_0.1.x86_64.rpm	6201d6bba9cbc98111f1dc07b367f5da	-
	ghostscript-doc-9.25-2.el8_0.1.noarch.rpm	76992cead2a36fbb3295cedd413ea154	-
	ghostscript-tools-dvipdf-9.25-2.el8_0.1.x86_64.rpm	7033c1d998c65d45d423024ecbad39ed	-
	ghostscript-tools-fonts-9.25-2.el8_0.1.x86_64.rpm	3e945e4ce5bcecf36d624e99f3d89b98	-
	ghostscript-tools-printing-9.25-2.el8_0.1.x86_64.rpm	3e406c6324dd7a61aa1f993f46d42488	-
	ghostscript-x11-9.25-2.el8_0.1.x86_64.rpm	5cca4c7b470aff30e66adc527ae6711e	-
	libgs-9.25-2.el8_0.1.i686.rpm	1eeac843ca55ec1b772b55b278c5eccf	-
	libgs-9.25-2.el8_0.1.x86_64.rpm	adf023be72f43afabc87d0a68066ab50	-
	libgs-devel-9.25-2.el8_0.1.i686.rpm	713fdaa960010f2e0857a08fed867300	-
	libgs-devel-9.25-2.el8_0.1.x86_64.rpm	cc6fc3b79036b9ea5a6594c6275fc06e	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691