obsolete
FEDORA-2018-ce5fba9e1a created by dkaspar 4 years ago for Fedora 29

This is a rebase to latest upstream version of Ghostscript, which fixes several high important CVEs recently discovered. It is advised to update this version as soon as possible.


Security fix for CVE-2918-15909 and some other bug fixes.

This update has been submitted for testing by dkaspar.

4 years ago

This update has obsoleted ghostscript-9.23-7.fc29, and has inherited its bugs and notes.

4 years ago

This update has been pushed to testing.

4 years ago

dkaspar edited this update.

4 years ago

dkaspar edited this update.

4 years ago

dkaspar edited this update.

4 years ago
User Icon pwalter commented & provided feedback 4 years ago
karma

Works

User Icon cserpentis commented & provided feedback 4 years ago
karma

works for me

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago

This update has been obsoleted by ghostscript-9.24-3.fc29.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
modified
4 years ago
BZ#1598980 [abrt] ghostscript: arg_next(): gs killed by SIGSEGV
0
0
BZ#1622757 CVE-2018-15909 ghostscript: shading_param incomplete type checking (699660) [fedora-all]
0
0
BZ#1625108 Message 'Waiting for job to complete.' stays after successful printing
0
0
BZ#1625827 CVE-2018-16542 ghostscript: .definemodifiedfont memory corruption if /typecheck is handled (699668) [fedora-all]
0
0
BZ#1625833 CVE-2018-15911 ghostscript: uninitialized memory access in the aesdecode operator (699665) [fedora-all]
0
0
BZ#1625837 CVE-2018-16510 ghostscript: Incorrect exec stack handling in the "CS" and "SC" PDF primitives (699671) [fedora-all]
0
0
BZ#1625840 CVE-2018-16539 ghostscript: incorrect access checking in temp file handling to disclose contents of files (699658) [fedora-all]
0
0
BZ#1625844 CVE-2018-16540 ghostscript: use-after-free in copydevice handling (699661) [fedora-all]
0
0
BZ#1625847 CVE-2018-16541 ghostscript: incorrect free logic in pagedevice replacement (699664) [fedora-all]
0
0
BZ#1625852 CVE-2018-16543 ghostscript: gssetresolution and gsgetresolution memory corruption (699670) [fedora-all]
0
0

Automated Test Results