Warning: Undefined array key "Description" in /var/www/www.linuxsecurity.com-443/html/lsadvisories/lsadvisories.php on line 220
Fedora 38: FEDORA-2023-cba4a3a00f Critical Ghostscript DoS Fix
fedora
August 12, 2023
fix for CVE-2023-38559 (#2225380)
Summary
This package provides useful conversion utilities based on Ghostscript software,
for converting PS, PDF and other document formats between each other.
Ghostscript is a suite of software providing an interpreter for Adobe Systems'
PostScript (PS) and Portable Document Format (PDF) page description languages.
Its primary purpose includes displaying (rasterization & rendering) and printing
of document pages, as well as conversions between different document formats.
Update Information:
fix for CVE-2023-38559 (#2225380)
Topics Covered
Change Log
* Mon Aug 7 2023 Richard Lescak
References
[ 1 ] Bug #2225380 - TRIAGE-CVE-2023-38559 ghostscript: Out-of-bound read in base/gdevdevn.c:1973 in devn_pcx_write_rle could result in DoS [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2225380
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-cba4a3a00f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: ghostscript
Product: Fedora 38
Version: 10.01.2
Release: 3.fc38
Summary: Interpreter for PostScript language & PDF
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!