Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SciLinux: SLSA-2019-0633-1 Important Ghostscript Security Fix

Calendar Mar 21, 2019 User Avatar LinuxSecurity Advisories
1 - 2 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory bug fix security fix ghostscript CVE references SL7 Important update
ghostscript: superexec operator is available (700585) (CVE-2019-3835) * ghostscript: forceput in DefineResource is still accessible (700576) (CVE-2019-3838) Bug Fix(es): * ghostscript: Regression: double comment chars '%%' in gs_init.ps leading to missing metadata SL7 x86_64 ghostscript-9.07-31.el7_6.10.i686.rpm ghostscript-9.07-31.el7_6.10.x86_64.rpm ghostscript-cups-9.07-31 [More...] 
Synopsis: Important: ghostscript security and bug fix update
Advisory ID:       SLSA-2019:0633-1
Issue Date:        2019-03-21
CVE Numbers:       CVE-2019-3838
                   CVE-2019-3835
--

Security Fix(es):

* ghostscript: superexec operator is available (700585) (CVE-2019-3835)

* ghostscript: forceput in DefineResource is still accessible (700576)
(CVE-2019-3838)

Bug Fix(es):

* ghostscript: Regression: double comment chars '%%' in gs_init.ps leading
to missing metadata
--

SL7
  x86_64
    ghostscript-9.07-31.el7_6.10.i686.rpm
    ghostscript-9.07-31.el7_6.10.x86_64.rpm
    ghostscript-cups-9.07-31.el7_6.10.x86_64.rpm
    ghostscript-debuginfo-9.07-31.el7_6.10.i686.rpm
    ghostscript-debuginfo-9.07-31.el7_6.10.x86_64.rpm
    ghostscript-devel-9.07-31.el7_6.10.i686.rpm
    ghostscript-devel-9.07-31.el7_6.10.x86_64.rpm
    ghostscript-gtk-9.07-31.el7_6.10.x86_64.rpm
    ghostscript-9.07-31.el7_6.10.src.rpm
  noarch
    ghostscript-doc-9.07-31.el7_6.10.noarch.rpm

- Scientific Linux Development Team
Your message here