Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderate threatghostscript update

SUSE: 2024:0921-1 Moderate: Ghostscript Out-Of-Bounds Issue

* bsc#1219357 * bsc#1219554 Cross-References: * CVE-2020-36773 . # Security update for ghostscript Announcement ID: SUSE-SU-2024:0921-1 Rating: moderate References: * bsc#1219357 * bsc#1219554 Cross-References: * CVE-2020-36773 CVSS scores: * CVE-2020-36773 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2020-36773 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for ghostscript fixes the following issues: * Fixed segfaults in gs_heap_free_object() — ref:_00D1igLOd._500Tr4BRgx:ref (bsc#1219357). Previously fixed security issue: * CVE-2020-36773: Fixed out-of-bounds write and use-after-free in devices/vector/gdevtxtw.c (for txtwrite) (bsc#1219554). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-921=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-921=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-921=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-921=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * ghostscript-debuginfo-9.52-23.71.1 * ghostscript-debugsource-9.52-23.71.1 * ghostscript-devel-9.52-23.71.1 * SUSE Linux Enterprise High PerformanceComputing 12 SP5 (aarch64 x86_64) * ghostscript-x11-9.52-23.71.1 * ghostscript-x11-debuginfo-9.52-23.71.1 * ghostscript-devel-9.52-23.71.1 * ghostscript-debuginfo-9.52-23.71.1 * ghostscript-9.52-23.71.1 * ghostscript-debugsource-9.52-23.71.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * ghostscript-x11-9.52-23.71.1 * ghostscript-x11-debuginfo-9.52-23.71.1 * ghostscript-devel-9.52-23.71.1 * ghostscript-debuginfo-9.52-23.71.1 * ghostscript-9.52-23.71.1 * ghostscript-debugsource-9.52-23.71.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * ghostscript-x11-9.52-23.71.1 * ghostscript-x11-debuginfo-9.52-23.71.1 * ghostscript-devel-9.52-23.71.1 * ghostscript-debuginfo-9.52-23.71.1 * ghostscript-9.52-23.71.1 * ghostscript-debugsource-9.52-23.71.1 ## References: * https://www.suse.com/security/cve/CVE-2020-36773.html * https://bugzilla.suse.com/show_bug.cgi?id=1219357 * https://bugzilla.suse.com/show_bug.cgi?id=1219554 . SUSE's critical update for Ghostscript addresses vulnerabilities that pose serious security risks, including out-of-bounds writes and segmentation faults to protect users. SUSE Linux Enterprise, Ghostscript Update, Security Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 22, 2024 Important SuSE
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowmemory corruption

Debian 5.0 Ghostscript Update DSA-2093-1 Moderate: Memory Corruption

Two security issues have been discovered in Ghostscript, the GPL PostScript/PDF interpreter. The Common Vulnerabilities and Exposures project identifies the following problems: . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2093-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Giuseppe Iuculano August 19, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : ghostscript Vulnerability : several Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2009-4897 CVE-2010-1628 Debian Bug : 584516 Two security issues have been discovered in Ghostscript, the GPL PostScript/PDF interpreter. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-4897 It was discovered a buffer overflow that allows remote attackers to execute arbitrary code or cause a denial of service via a crafted PDF document containing a long name. CVE-2010-1628 Dan Rosenberg discovered that ghostscript incorrectly handled certain recursive Postscript files. An attacker could execute arbitrary code via a PostScript file containing unlimited recursive procedure invocations, which trigger memory corruption in the stack of the interpreter. For the stable distribution (lenny), these problems have been fixed in version 8.62.dfsg.1-3.2lenny5 For the testing distribution (squeeze) and the unstable distribution (sid), these problems have been fixed in version 8.71~dfsg2-4 We recommend that you upgrade your ghostscript package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internaldatabase apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 106204 b0bbc6e0754c9a0675fadba1e90f1fbc Size/MD5 checksum: 1536 546b30cfe6f76c0b5bd72cbeac6508d4 Size/MD5 checksum: 12212309 42fc1b31aa745c3765c2fcd2da243236 Architecture independent packages: Size/MD5 checksum: 29112 22d376a18c120a6dca73cbf6554c9f3c Size/MD5 checksum: 28900 a749fa7a079f61432dba471524e3e7a5 Size/MD5 checksum: 28906 d3d81f5b998eb50a9e48715f2e60db6f Size/MD5 checksum: 2783318 79a9eb022df01d0bfb84f1b3506ca396 Size/MD5 checksum: 28898 02a99ada64c8e28343b0c1fefaeb4b90 Size/MD5 checksum: 28902 996faec6be2dee08b2eb331db983cb42 alpha architecture (DEC Alpha) Size/MD5 checksum: 65668 ee55e121b1c1a1801c129fe06d1227a6 Size/MD5 checksum: 35680 877cb527ffaae7e6a19abbeacf22a195 Size/MD5 checksum: 762546 5b6765436e6cdac408ef3e20000574e4 Size/MD5 checksum: 2629510 ad41a261c12f9455a8b96275bce443d6 amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 794466 ca2201142908c4577822396aefbdfecc Size/MD5 checksum: 63302 cb8c8e227c2093a27930e6110ee06f60 Size/MD5 checksum: 2322954 feae1a7b2e1d580dd432c09f5b29b362 Size/MD5 checksum: 36518 b0c3e67cab7c22ec6aa9060db4d916b5 arm architecture (ARM) Size/MD5 checksum: 796792 ac25f9f9b589abe8f43c647bd0435667 Size/MD5 checksum: 2179424 b7814c107c48d12d5238f1c4d333bf86 Size/MD5 checksum: 60116 034af0c1b3d514ebc507f0296be0ab60 Size/MD5 checksum: 35122 e47db394f8bc0e6b99bd544e33cad02e armel architecture (ARM EABI) Size/MD5 checksum: 62832a74ba1060bdbe8e7c6d3ac30cf07711d Size/MD5 checksum: 798120 df34b7e843948d4fc1ae6a20d672ed18 Size/MD5 checksum: 36596 a711d2472d07c67eef3c6015e23a3d80 Size/MD5 checksum: 2212364 67cd3f7e13efc5300d20e2a9f2a38cf8 hppa architecture (HP PA RISC) Size/MD5 checksum: 800214 8a585ba403b0fe0f768fdef2dd8cfd7a Size/MD5 checksum: 36544 48c12752cd7fcb6bbea27869c012373d Size/MD5 checksum: 67018 2e2d1a7438c46983292c5ffacd4bfa07 Size/MD5 checksum: 2574060 f2a672acd5b0c3c728ec3c6d6ef7dcba i386 architecture (Intel ia32) Size/MD5 checksum: 36512 47a4a9c4d9266c8b537fb6baafcc1faa Size/MD5 checksum: 801786 0dfcc2411c49a9d70327e40af7e13f98 Size/MD5 checksum: 61720 92f05e83194a8de2512f844c86a2c976 Size/MD5 checksum: 2221596 5f4189281a15ec2ec55ddce517962f86 ia64 architecture (Intel ia64) Size/MD5 checksum: 36550 ceb8f019cd67ea21da22aa0cea687b50 Size/MD5 checksum: 801826 29cd31a74f2765b970a6102f5e939445 Size/MD5 checksum: 81124 d4aa8adcd38543ea5f2eff3ec751e187 Size/MD5 checksum: 3614438 cc631a8c36e393a9063d5285da8691ca mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 762340 18a63c46cbed53151bca444af3f88c07 Size/MD5 checksum: 35682 e05a5485c10f4b999422cd6ae3b108e8 Size/MD5 checksum: 61980 2f8cf35cdfaa0f099a53f1cfc5d19d77 Size/MD5 checksum: 2300664 60bd6e8a4615b54c106b3e226b0524f3 powerpc architecture (PowerPC) Size/MD5 checksum: 36640 ad7809f160de7c990a72dea1e9ef6bec Size/MD5 checksum: 2409214 be3634b273788497c6ed10783d1625cb Size/MD5 checksum: 66162 28aa7ebee0da16439865ba64b46ddaa4 Size/MD5 checksum: 801370 e22b608baf3db49179673018cec21bc9 s390 architecture (IBM S/390) Size/MD5 checksum: 2438424 b870da4c191b74122ae6e44389a94e7e Size/MD5 checksum: 63662 cc5f7b47b581cc3fdd28dfe8bc9058ed Size/MD5 checksum: 762380 d2be8329e3b843782a2bd958ad798d1f Size/MD5 checksum: 3567295f60e18519f4fecd269300a41fd7163 sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 36566 0c42f3fd04b9778a16a008fcab73d241 Size/MD5 checksum: 60184 bdf8db441be29e435594eed658dc9191 Size/MD5 checksum: 798102 1b16b0f86fb5e3ba990575b60ad1bfce Size/MD5 checksum: 2187560 f62ee6389a7c237f188f443183d13259 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . The latest ghostscript updates include critical patches to fix buffer overflows and memory corruption issues as detailed in Debian's advisory DSA-2093-1.. ghostscript vulnerabilities, Debian security advisory, memory corruption fix. . LinuxSecurity.com Team

Calendar 2 Aug 19, 2010 Debian
Banner 4 1028x280 1708121825 1771600306
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryGentoolocal exploit

Gentoo: 200306-08 Urgent Local Exploit Vulnerability in Ghostscript

ps2epsi uses an insecurely created file to execute ghostscript. Thiscould result in overwritten files for the user who is invoking ps2epsi.. - - --------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200306-08 - - --------------------------------------------------------------------- PACKAGE : ghostscript SUMMARY : insecure temporary file DATE : 2003-06-14 19:29 UTC EXPLOIT : local VERSIONS AFFECTED : =ghostscript-7.05.6-r2 CVE : CAN-2003-0354 - - --------------------------------------------------------------------- ps2epsi uses an insecurely created file to execute ghostscript. This could result in overwritten files for the user who is invoking ps2epsi. SOLUTION It is recommended that all Gentoo Linux users who are running app-text/ghostscript upgrade to ghostscript-7.05.6-r2 as follows emerge sync emerge ghostscript emerge clean - - --------------------------------------------------------------------- This email address is being protected from spambots. You need JavaScript enabled to view it. - GnuPG key is available at - - --------------------------------------------------------------------- . Important Gentoo alert regarding ghostscript: potential risk of insecure temporary file could jeopardize user data. Upgrade instructions are included.. ghostscript security, local exploit fix, insecure temp file, security update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 14, 2003 Critical Gentoo
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorycritical issuered hat linux

Red Hat Linux: RHSA-2003:181-01 Critical Ghostscript Command Execution

A flaw in unpatched versions of Ghostscript before 7.07 allows malicious postscript files to execute arbitrary commands even with -dSAFER enabled.. --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated ghostscript packages fix vulnerability Advisory ID: RHSA-2003:181-01 Issue date: 2003-05-30 Updated on: 2003-05-30 Product: Red Hat Linux Keywords: Cross references: Obsoletes: CVE Names: CAN-2003-0354 --------------------------------------------------------------------- 1. Topic: New ghostscript packages fixing a command execution vulnerability are now available. 2. Relevant releases/architectures: Red Hat Linux 7.1 - i386 Red Hat Linux 7.2 - i386, ia64 Red Hat Linux 7.3 - i386 Red Hat Linux 8.0 - i386 Red Hat Linux 9 - i386 3. Problem description: GNU Ghostscript is an interpreter for the PostScript language, and is often used when printing to printers that do not have their own built-in PostScript interpreter. A flaw in unpatched versions of Ghostscript before 7.07 allows malicious postscript files to execute arbitrary commands even with -dSAFER enabled. Note that this vulnerability does not affect Ghostscript when the Red Hat -dPARANOIDSAFER option is used. Therefore, a malicious print job cannot be used to exploit this vulnerability under Red Hat Linux. Users of Ghostscript are advised to upgrade to these updated packages, which contain a backported patch and are not vulnerable to this issue. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. To update all RPMs for your particular architecture, run: rpm -Fvh [filenames] where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) ifyour current directory *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. RPMs required: Red Hat Linux 7.1: SRPMS: i386: Red Hat Linux 7.2: SRPMS: i386: ia64: Red Hat Linux 7.3: SRPMS: i386: Red Hat Linux 8.0: SRPMS: i386: Red Hat Linux 9: SRPMS: i386: 6. Verification: MD5 sum Package Name -------------------------------------------------------------------------- 17f5e1f86295677e4ad75fc202d26159 7.1/en/os/SRPMS/ghostscript-6.51-16.1.7x.1.src.rpm db35a7a93ef26ff36c5880580504b43a 7.1/en/os/i386/ghostscript-6.51-16.1.7x.1.i386.rpm d8b42f6af2bdb9edee0b50459c05ad96 7.2/en/os/SRPMS/ghostscript-6.51-16.3.src.rpm 05589f336b1f45d83d167de9d3d173ca 7.2/en/os/i386/ghostscript-6.51-16.3.i386.rpm 05f55eb8b6252e2c672b83778831e7c2 7.2/en/os/ia64/ghostscript-6.51-16.3.ia64.rpm d7107c39c5d04e1afd1c8d67e203713f 7.3/en/os/SRPMS/ghostscript-6.52-9.5.src.rpm ebba3a35451201da84c9898b639f85ef 7.3/en/os/i386/ghostscript-6.52-9.5.i386.rpm 3ce50b988a370f3ff09855abd1089341 8.0/en/os/SRPMS/ghostscript-7.05-20.1.src.rpm 59f89e35fa9ebe4487eaa80576cc7253 8.0/en/os/i386/ghostscript-7.05-20.1.i386.rpm 7dc5193bc01725273294c2c3f1959434 8.0/en/os/i386/ghostscript-devel-7.05-20.1.i386.rpm 17b0e8fa73551ee829fde0b9c20e98ac 8.0/en/os/i386/ghostscript-gtk-7.05-20.1.i386.rpm df0c388dd079bb13e1ce0cf0dbcaee63 8.0/en/os/i386/hpijs-1.1-20.1.i386.rpm 0addc0a8db3d8744390432c5d1441fb3 9/en/os/SRPMS/ghostscript-7.05-32.1.src.rpm d11602ea9618a680f1224b8fa3228f55 9/en/os/i386/ghostscript-7.05-32.1.i386.rpm d27dd715e6a662727f7f582f52d80bfc 9/en/os/i386/ghostscript-devel-7.05-32.1.i386.rpm f2ad407e793d21c730aa1e211c6bc1c99/en/os/i386/hpijs-1.3-32.1.i386.rpm These packages are GPG signed by Red Hat for security. Our key is available at All Red Hat products You can verify each package with the following command: rpm --checksig -v If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: md5sum 7. References: CVE -CVE-2003-0354 8. Contact: The Red Hat security contact is . More contact details at All Red Hat products Copyright 2003 Red Hat, Inc. . Debian has released updated packages for the OpenSSL library to address a critical vulnerability affecting previous versions that lacked fixes.. Ghostscript Patch, Command Execution Risk, Linux Software Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 02, 2003 Critical Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here