-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 10 Nov 2024 13:20:08 +0100
Source: ghostscript
Binary: ghostscript ghostscript-dbgsym ghostscript-x libgs-dev libgs10 libgs10-dbgsym
Architecture: s390x
Version: 10.0.0~dfsg-11+deb12u6
Distribution: bookworm-security
Urgency: high
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 ghostscript - interpreter for the PostScript language and for PDF
 ghostscript-x - transitional package for ghostscript
 libgs-dev  - interpreter for the PostScript language and for PDF - Development
 libgs10    - interpreter for the PostScript language and for PDF - Library
Changes:
 ghostscript (10.0.0~dfsg-11+deb12u6) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Check for overflow validating format string (CVE-2024-46953)
   * Fix filenameforall completion cleanup
   * Don't leave a dangling pointer on the stack
   * PostScript interpreter - Null dangling references on stack
   * PostScript interpreter - fix buffer length check (CVE-2024-46956)
   * PS interpreter review colour code for stack pointers
   * PS interpreter - check Indexed colour space index (CVE-2024-46955)
   * PS interpreter - check the type of the Pattern Implementation
     (CVE-2024-46951)
   * PDF interpreter - sanitise W array values in Xref streams (CVE-2024-46952)
Checksums-Sha1:
 f5ec6017b8872e64ca34ec143b76e61aeecb7abc 5724 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb
 4c5dabc87867b7e2e1a3d5b08aebe899e50ee9c1 28280 ghostscript-x_10.0.0~dfsg-11+deb12u6_s390x.deb
 3421522c9f164a733d6ee95957d03db67cd9e7c6 11845 ghostscript_10.0.0~dfsg-11+deb12u6_s390x-buildd.buildinfo
 eab2f4c4faa7d9a08704e3f3a0105def352f6481 57400 ghostscript_10.0.0~dfsg-11+deb12u6_s390x.deb
 d566e66249987eb421ff45fd936ef0fd171f53f9 39828 libgs-dev_10.0.0~dfsg-11+deb12u6_s390x.deb
 deb137a967674f0f627edcddf4167db04097cf3b 9598596 libgs10-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb
 7e12169fe855fa665cc0e5dbbce61627bcafc7ba 2254904 libgs10_10.0.0~dfsg-11+deb12u6_s390x.deb
Checksums-Sha256:
 397d1cb7d3465073df8cfbb70a846e70458b96a02f76b534fe7e40ad99dc9833 5724 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb
 606ae2be573b90aa0e71f89d46ae13d9ed8365c2e69019811c6654e71faeac4b 28280 ghostscript-x_10.0.0~dfsg-11+deb12u6_s390x.deb
 6570077b24d9b61ed87c5418a46774cbee1979a49ba512b85ffe604426d568ac 11845 ghostscript_10.0.0~dfsg-11+deb12u6_s390x-buildd.buildinfo
 646456b0a1cd5c3d2603b9a773be85f446d562a07cc85c7fef7ce8a5f3f58e42 57400 ghostscript_10.0.0~dfsg-11+deb12u6_s390x.deb
 fc13b72c34e4ce0290e44177cd16fa4b2a82e2ff6ee75ee5d3d3685288080f0d 39828 libgs-dev_10.0.0~dfsg-11+deb12u6_s390x.deb
 8d59978a429633c86625350ba2ff8e2d3781c5674c28483fe9d2c366320175d7 9598596 libgs10-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb
 9c18f3b930e0cb05b44ec212efc820ad2d8326fe846f774d9ae5199f678bd7bb 2254904 libgs10_10.0.0~dfsg-11+deb12u6_s390x.deb
Files:
 4df51be7433f3898c5d69b9179edd55d 5724 debug optional ghostscript-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb
 f3f5f4ee0e3b81d8c0036d60413de05d 28280 oldlibs optional ghostscript-x_10.0.0~dfsg-11+deb12u6_s390x.deb
 c08143d67fa2d18ea8617b5b7b9b94e9 11845 text optional ghostscript_10.0.0~dfsg-11+deb12u6_s390x-buildd.buildinfo
 a4762464f06addec7ade341fd001f99d 57400 text optional ghostscript_10.0.0~dfsg-11+deb12u6_s390x.deb
 aa933934b776aa4282e180b37f466b8a 39828 libdevel optional libgs-dev_10.0.0~dfsg-11+deb12u6_s390x.deb
 8b7750be6b5314ff2ed1c42ef1f34ccf 9598596 debug optional libgs10-dbgsym_10.0.0~dfsg-11+deb12u6_s390x.deb
 d358315fc53a8e0615a15f4c5111a29f 2254904 libs optional libgs10_10.0.0~dfsg-11+deb12u6_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=XQQf
-----END PGP SIGNATURE-----