system environment/daemons

ghostscript-cups - CUPS filter for interpreting PostScript and PDF

Website: https://ghostscript.com/
License: AGPLv3+
Vendor: Scientific Linux
Description:
CUPS filter and conversion rules for interpreting PostScript and PDF.

Packages

ghostscript-cups-9.25-2.el7_7.3.x86_64 [59 KiB] Changelog by Zdenek Dohnal (2019-11-08):
- 1769340 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys
ghostscript-cups-9.25-2.el7_7.2.x86_64 [59 KiB] Changelog by Martin Osvald (2019-08-22):
- Resolves: #1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdf_hook_DSC_Creator (701445)
- Resolves: #1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams (701444)
- Resolves: #1744003 - CVE-2019-14813 ghostscript: Safer Mode Bypass by .forceput Exposure in setsystemparams (701443)
- Resolves: #1744228 - CVE-2019-14817 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfexectoken and other procedures (701450)
ghostscript-cups-9.25-2.el7_7.1.x86_64 [58 KiB] Changelog by Martin Osvald (2019-08-05):
- Resolves: #1737338 - CVE-2019-10216 ghostscript: -dSAFER escape via .buildfont1 (701394)
ghostscript-cups-9.25-2.el7.x86_64 [58 KiB] Changelog by Martin Osvald (2019-04-02):
- obsoleted old ghostscript-devel to allow clean upgrade to libgs-devel
ghostscript-cups-9.07-31.el7_6.11.x86_64 [59 KiB] Changelog by Martin Osvald (2019-03-21):
- Resolves: #1673398 - CVE-2019-3839 ghostscript: missing attack vector
  protections for CVE-2019-6116
- fix for pdf2dsc regression added
ghostscript-cups-9.07-31.el7_6.10.x86_64 [58 KiB] Changelog by Martin Osvald (2019-01-29):
- Resolves: #1673915 - ghostscript: Regression: double comment chars
  '%' in gs_init.ps leading to missing metadata
- Resolves: #1678171 - CVE-2019-3835 ghostscript: superexec operator
  is available (700585)
- Resolves: #1680025 - CVE-2019-3838 ghostscript: forceput in DefineResource
  is still accessible (700576)
ghostscript-cups-9.07-31.el7_6.9.x86_64 [58 KiB] Changelog by Martin Osvald (2019-01-24):
- Related: #1667442 - CVE-2019-6116 - added missing parts of patch
ghostscript-cups-9.07-31.el7_6.6.x86_64 [57 KiB] Changelog by Martin Osvald (2018-12-10):
- Resolves: #1657822 - ghostscript: Regression: Warning: Dropping incorrect
  smooth shading object (Error: /rangecheck in --run--)
ghostscript-cups-9.07-31.el7_6.3.x86_64 [56 KiB] Changelog by Martin Osvald (2018-11-28):
- Resolves: #1654290 ghostscript update breaks xdvi (gs: Error: /undefined in flushpage)
ghostscript-cups-9.07-31.el7_6.1.x86_64 [55 KiB] Changelog by Martin Osvald (2018-11-14):
- Remove as many non-standard operators as possible to make the codebase
  closer to upstream for later CVEs
- Resolves: #1621383 - CVE-2018-16511 ghostscript: missing type check in type
  checker (699659)
- Resolves: #1621159 - CVE-2018-15908 ghostscript: .tempfile file permission
  issues (699657)
- Resolves: #1621381 - CVE-2018-15909 ghostscript: shading_param incomplete
  type checking (699660)

Listing created by Repoview-0.6.6-4.el7