| Package | ghostscript |
|---|---|
| Version | 9.26a~dfsg-0+deb9u15 (stretch), 9.27~dfsg-2+deb10u12 (buster) |
| Related CVEs | CVE-2025-59798 CVE-2025-59799 |
It was discovered that Ghostscript incorrectly handled some PDF files. An attacker could use this issue to cause Ghostscript to crash, resulting in a denial of service.
For Debian 10 buster, these problems have been fixed in version 9.27~dfsg-2+deb10u12.
For Debian 9 stretch, these problems have been fixed in version 9.26a~dfsg-0+deb9u15.
We recommend that you upgrade your ghostscript packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.