Lucene search
AmazonALAS-2024-2553HistoryMay 23, 2024 - 10:04 p.m.
Medium: ghostscript
2024-05-2322:04:00
alas.aws.amazon.com
2
artifex ghostscript
safer mode
cve-2023-52722
update
amazon linux 2
red hat
mitre
unix
Issue Overview:
An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard. (CVE-2023-52722)
Affected Packages:
ghostscript
Note:
This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update ghostscript to update your system.
New Packages:
aarch64:
ghostscript-9.54.0-9.amzn2.0.2.aarch64
libgs-9.54.0-9.amzn2.0.2.aarch64
libgs-devel-9.54.0-9.amzn2.0.2.aarch64
ghostscript-gtk-9.54.0-9.amzn2.0.2.aarch64
ghostscript-cups-9.54.0-9.amzn2.0.2.aarch64
ghostscript-debuginfo-9.54.0-9.amzn2.0.2.aarch64
i686:
ghostscript-9.54.0-9.amzn2.0.2.i686
libgs-9.54.0-9.amzn2.0.2.i686
libgs-devel-9.54.0-9.amzn2.0.2.i686
ghostscript-gtk-9.54.0-9.amzn2.0.2.i686
ghostscript-cups-9.54.0-9.amzn2.0.2.i686
ghostscript-debuginfo-9.54.0-9.amzn2.0.2.i686
noarch:
ghostscript-doc-9.54.0-9.amzn2.0.2.noarch
src:
ghostscript-9.54.0-9.amzn2.0.2.src
x86_64:
ghostscript-9.54.0-9.amzn2.0.2.x86_64
libgs-9.54.0-9.amzn2.0.2.x86_64
libgs-devel-9.54.0-9.amzn2.0.2.x86_64
ghostscript-gtk-9.54.0-9.amzn2.0.2.x86_64
ghostscript-cups-9.54.0-9.amzn2.0.2.x86_64
ghostscript-debuginfo-9.54.0-9.amzn2.0.2.x86_64
Additional References
Red Hat: CVE-2023-52722
Mitre: CVE-2023-52722
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 2 | aarch64 | ghostscript | < 9.54.0-9.amzn2.0.2 | ghostscript-9.54.0-9.amzn2.0.2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | libgs | < 9.54.0-9.amzn2.0.2 | libgs-9.54.0-9.amzn2.0.2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | libgs-devel | < 9.54.0-9.amzn2.0.2 | libgs-devel-9.54.0-9.amzn2.0.2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | ghostscript-gtk | < 9.54.0-9.amzn2.0.2 | ghostscript-gtk-9.54.0-9.amzn2.0.2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | ghostscript-cups | < 9.54.0-9.amzn2.0.2 | ghostscript-cups-9.54.0-9.amzn2.0.2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | ghostscript-debuginfo | < 9.54.0-9.amzn2.0.2 | ghostscript-debuginfo-9.54.0-9.amzn2.0.2.aarch64.rpm |
| Amazon Linux | 2 | i686 | ghostscript | < 9.54.0-9.amzn2.0.2 | ghostscript-9.54.0-9.amzn2.0.2.i686.rpm |
| Amazon Linux | 2 | i686 | libgs | < 9.54.0-9.amzn2.0.2 | libgs-9.54.0-9.amzn2.0.2.i686.rpm |
| Amazon Linux | 2 | i686 | libgs-devel | < 9.54.0-9.amzn2.0.2 | libgs-devel-9.54.0-9.amzn2.0.2.i686.rpm |
| Amazon Linux | 2 | i686 | ghostscript-gtk | < 9.54.0-9.amzn2.0.2 | ghostscript-gtk-9.54.0-9.amzn2.0.2.i686.rpm |
Related
mageia
mageia
Updated ghostscript packages fix security vulnerability
2024-05-16 20:29:32
cvelist
cvelist
CVE-2023-52722
2024-04-27 00:00:00
openvas
openvas
openSUSE: Security Advisory for ghostscript (SUSE-SU-2024:1590-2)
2024-06-19 00:00:00
Mageia: Security Advisory (MGASA-2024-0180)
2024-05-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1568-1)
2024-05-10 00:00:00
ubuntucve
ubuntucve
CVE-2023-52722
2024-04-28 00:00:00
redhatcve
redhatcve
CVE-2023-52722
2024-05-03 02:52:06
nessus
nessus
debiancve
debiancve
CVE-2023-52722
2024-04-28 00:15:07
cve
cve
CVE-2023-52722
2024-04-28 00:15:07
alpinelinux
alpinelinux
CVE-2023-52722
2024-04-28 00:15:07
nvd
nvd
CVE-2023-52722
2024-04-28 00:15:07
debian
debian
[SECURITY] [DSA 5692-1] ghostscript security update
2024-05-15 20:07:17
ubuntu
ubuntu
Ghostscript vulnerabilities
2024-06-17 00:00:00
osv
osv
ghostscript - security update
2024-05-15 00:00:00
ghostscript vulnerabilities
2024-06-17 17:35:07