USN-5618-1: Ghostscript vulnerability
20 September 2022
Ghostscript could be made to crash if it opened a specially crafted.
Releases
Packages
- ghostscript - PostScript and PDF interpreter
Details
It was discovered the Ghostscript incorrectly handled memory when
processing certain inputs. By tricking a user into opening a specially
crafted PDF file, an attacker could cause the program to crash.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04
-
ghostscript
-
9.26~dfsg+0-0ubuntu0.16.04.14+esm4
Available with Ubuntu Pro
-
ghostscript-x
-
9.26~dfsg+0-0ubuntu0.16.04.14+esm4
Available with Ubuntu Pro
-
libgs9
-
9.26~dfsg+0-0ubuntu0.16.04.14+esm4
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References
Related notices
- USN-5643-1: ghostscript, libgs9, ghostscript-doc, ghostscript-x, libgs9-common, libgs-dev