FEDORA-2019-0a9d525d71

security update in Fedora 31 for ghostscript

Status: stable a month ago
  • rebase to latest upstream version 9.27
  • security fixes added for:
  • CVE-2019-14811 (bug #1747908)
  • CVE-2019-14812 (bug #1747907)
  • CVE-2019-14813 (bug #1747906)
  • CVE-2019-14817 (bug #1747909)

How to install

sudo dnf upgrade --advisory=FEDORA-2019-0a9d525d71

Comments 10

This update has been submitted for testing by mosvald.

This update's test gating status has been changed to 'waiting'.

This update's test gating status has been changed to 'ignored'.

This update has been pushed to testing.

Works

karma: +1

Works for me. No regressions noted compared to previous version.

karma: +1

This update can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
high
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Enabled
Dates
submitted a month ago
in testing a month ago
in stable a month ago

Related Bugs 6

00 #1696192 ghostscript-9.27 is available
00 #1747906 CVE-2019-14813 ghostscript: Safer mode bypass by .forceput exposure in setsystemparams (701443) [fedora-all]
00 #1747907 CVE-2019-14812 ghostscript: Safer mode bypass by .forceput exposure in setuserparams (701444) [fedora-all]
00 #1747908 CVE-2019-14811 ghostscript: Safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator (701445) [fedora-all]
00 #1747909 CVE-2019-14817 ghostscript: Safer mode bypass by .forceput exposure in .pdfexectoken and other procedures (701450) [fedora-all]
00 #1747956 CVE-2019-3839 ghostscript: missing attack vector protections for CVE-2019-6116 [fedora-all]

Automated Test Results