ELA-974-1 ghostscript security update

multiple vulnerabilities

2023-09-30
Packageghostscript
Version9.26a~dfsg-0+deb8u12 (jessie), 9.26a~dfsg-0+deb9u12 (stretch)
Related CVEs CVE-2020-21710 CVE-2020-21890 CVE-2023-38559


CVE-2020-21710

Divide by zero in eps_print_page()

CVE-2020-21890

Buffer overflow in clj_media_size()

CVE-2023-38559

Buffer overflow in devn_pcx_write_rle()


For Debian 8 jessie, these problems have been fixed in version 9.26a~dfsg-0+deb8u12.

For Debian 9 stretch, these problems have been fixed in version 9.26a~dfsg-0+deb9u12.

We recommend that you upgrade your ghostscript packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.