-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 10 Nov 2024 13:20:08 +0100 Source: ghostscript Binary: ghostscript ghostscript-dbgsym ghostscript-x libgs-dev libgs10 libgs10-dbgsym Architecture: s390x Version: 10.0.0~dfsg-11+deb12u6 Distribution: bookworm-security Urgency: high Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org> Changed-By: Salvatore Bonaccorso <carnil@debian.org> Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-x - transitional package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs10 - interpreter for the PostScript language and for PDF - Library Changes: ghostscript (10.0.0~dfsg-11+deb12u6) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Check for overflow validating format string (CVE-2024-46953) * Fix filenameforall completion cleanup * Don't leave a dangling pointer on the stack * PostScript interpreter - Null dangling references on stack * PostScript interpreter - fix buffer length check (CVE-2024-46956) * PS interpreter review colour code for stack pointers * PS interpreter - check Indexed colour space index (CVE-2024-46955) * PS interpreter - check the type of the Pattern Implementation (CVE-2024-46951) * PDF interpreter - sanitise W array values in Xref streams (CVE-2024-46952) Checksums-Sha1: f5ec6017b8872e64ca34ec143b76e61aeecb7abc 5724 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb 4c5dabc87867b7e2e1a3d5b08aebe899e50ee9c1 28280 ghostscript-x_10.0.0~dfsg-11+deb12u6_s390x.deb 3421522c9f164a733d6ee95957d03db67cd9e7c6 11845 ghostscript_10.0.0~dfsg-11+deb12u6_s390x-buildd.buildinfo eab2f4c4faa7d9a08704e3f3a0105def352f6481 57400 ghostscript_10.0.0~dfsg-11+deb12u6_s390x.deb d566e66249987eb421ff45fd936ef0fd171f53f9 39828 libgs-dev_10.0.0~dfsg-11+deb12u6_s390x.deb deb137a967674f0f627edcddf4167db04097cf3b 9598596 libgs10-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb 7e12169fe855fa665cc0e5dbbce61627bcafc7ba 2254904 libgs10_10.0.0~dfsg-11+deb12u6_s390x.deb Checksums-Sha256: 397d1cb7d3465073df8cfbb70a846e70458b96a02f76b534fe7e40ad99dc9833 5724 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb 606ae2be573b90aa0e71f89d46ae13d9ed8365c2e69019811c6654e71faeac4b 28280 ghostscript-x_10.0.0~dfsg-11+deb12u6_s390x.deb 6570077b24d9b61ed87c5418a46774cbee1979a49ba512b85ffe604426d568ac 11845 ghostscript_10.0.0~dfsg-11+deb12u6_s390x-buildd.buildinfo 646456b0a1cd5c3d2603b9a773be85f446d562a07cc85c7fef7ce8a5f3f58e42 57400 ghostscript_10.0.0~dfsg-11+deb12u6_s390x.deb fc13b72c34e4ce0290e44177cd16fa4b2a82e2ff6ee75ee5d3d3685288080f0d 39828 libgs-dev_10.0.0~dfsg-11+deb12u6_s390x.deb 8d59978a429633c86625350ba2ff8e2d3781c5674c28483fe9d2c366320175d7 9598596 libgs10-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb 9c18f3b930e0cb05b44ec212efc820ad2d8326fe846f774d9ae5199f678bd7bb 2254904 libgs10_10.0.0~dfsg-11+deb12u6_s390x.deb Files: 4df51be7433f3898c5d69b9179edd55d 5724 debug optional ghostscript-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb f3f5f4ee0e3b81d8c0036d60413de05d 28280 oldlibs optional ghostscript-x_10.0.0~dfsg-11+deb12u6_s390x.deb c08143d67fa2d18ea8617b5b7b9b94e9 11845 text optional ghostscript_10.0.0~dfsg-11+deb12u6_s390x-buildd.buildinfo a4762464f06addec7ade341fd001f99d 57400 text optional ghostscript_10.0.0~dfsg-11+deb12u6_s390x.deb aa933934b776aa4282e180b37f466b8a 39828 libdevel optional libgs-dev_10.0.0~dfsg-11+deb12u6_s390x.deb 8b7750be6b5314ff2ed1c42ef1f34ccf 9598596 debug optional libgs10-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb d358315fc53a8e0615a15f4c5111a29f 2254904 libs optional libgs10_10.0.0~dfsg-11+deb12u6_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEu0D/YpnnSxv8epH9AKOyQzsWVasFAmcwrtAACgkQAKOyQzsW VatI4A//ewkt7p3lqSumTVt1crG2mB7sUa9x+fkDqxy8pUibAVLa+Zp/6/97n/eG tHaSQrfOS6aqfaGHjReDQHrL8HfpaWHqJ3Kw8BwChWns4FlG3wlkmdgoJwOchZgC xSSmLiwIHrIa7BEY+1B+zcnsJd6lRZrDswujLisGnsIAC91G3Ri8KaYdOZF5JALo IHSwDNoQfGH7nwGGRrVLYb2LkrqWSp6BKb6a8FfSMJ/hKr2QKPMv3Rv7Ss1ABF6y gRBV+LQqLSEqPzewgN8Xmf8XpWLax13bDEEAqzu1Uvh0SvfoN2B85okLlX4p32F8 bI5rr2xFCUW7TF6NZrNdykrdtxetZ3Cp5qMq5To0/yW2y1ptjqRO9+QRvs0CE/yO ght63TSEbn1SGiz8BFLIANoVRFEEGBFuyIwLotDIb76vIxiVu3M6gba5pRc9YS+8 EzaxVn+07UNWZnGuJ8C2LU/u/HrLdc3NJmsElK90SPEsdqxlbR+sQQmnvnbQscXl dTOgRN2Br5y8GTg5c6syKLmNHl65/NC51Hx2upTmsWxCDM2hRdJXYmPrvPehuBVd ILezmfGpRQXia9XnUMn/mVY3oGw+xs75VGmMGV1RRRYLmkKiSgz1oiUYYOEPJE+3 HJcbKV7PNqKYQT+oxDI00YIoWiCKFcSf8dBGfZclpJ84y+Ux23U= =XQQf -----END PGP SIGNATURE-----