ghostscript-cups-9.25-2.el7_7.3.x86_64
[59 KiB] |
Changelog
by Zdenek Dohnal (2019-11-08):
- 1769340 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys
|
ghostscript-cups-9.25-2.el7_7.2.x86_64
[59 KiB] |
Changelog
by Martin Osvald (2019-08-22):
- Resolves: #1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdf_hook_DSC_Creator (701445)
- Resolves: #1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams (701444)
- Resolves: #1744003 - CVE-2019-14813 ghostscript: Safer Mode Bypass by .forceput Exposure in setsystemparams (701443)
- Resolves: #1744228 - CVE-2019-14817 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfexectoken and other procedures (701450)
|
ghostscript-cups-9.25-2.el7_7.1.x86_64
[58 KiB] |
Changelog
by Martin Osvald (2019-08-05):
- Resolves: #1737338 - CVE-2019-10216 ghostscript: -dSAFER escape via .buildfont1 (701394)
|
ghostscript-cups-9.25-2.el7.x86_64
[58 KiB] |
Changelog
by Martin Osvald (2019-04-02):
- obsoleted old ghostscript-devel to allow clean upgrade to libgs-devel
|
ghostscript-cups-9.07-31.el7_6.11.x86_64
[59 KiB] |
Changelog
by Martin Osvald (2019-03-21):
- Resolves: #1673398 - CVE-2019-3839 ghostscript: missing attack vector
protections for CVE-2019-6116
- fix for pdf2dsc regression added
|
ghostscript-cups-9.07-31.el7_6.10.x86_64
[58 KiB] |
Changelog
by Martin Osvald (2019-01-29):
- Resolves: #1673915 - ghostscript: Regression: double comment chars
'%' in gs_init.ps leading to missing metadata
- Resolves: #1678171 - CVE-2019-3835 ghostscript: superexec operator
is available (700585)
- Resolves: #1680025 - CVE-2019-3838 ghostscript: forceput in DefineResource
is still accessible (700576)
|
ghostscript-cups-9.07-31.el7_6.9.x86_64
[58 KiB] |
Changelog
by Martin Osvald (2019-01-24):
- Related: #1667442 - CVE-2019-6116 - added missing parts of patch
|
ghostscript-cups-9.07-31.el7_6.6.x86_64
[57 KiB] |
Changelog
by Martin Osvald (2018-12-10):
- Resolves: #1657822 - ghostscript: Regression: Warning: Dropping incorrect
smooth shading object (Error: /rangecheck in --run--)
|
ghostscript-cups-9.07-31.el7_6.3.x86_64
[56 KiB] |
Changelog
by Martin Osvald (2018-11-28):
- Resolves: #1654290 ghostscript update breaks xdvi (gs: Error: /undefined in flushpage)
|
ghostscript-cups-9.07-31.el7_6.1.x86_64
[55 KiB] |
Changelog
by Martin Osvald (2018-11-14):
- Remove as many non-standard operators as possible to make the codebase
closer to upstream for later CVEs
- Resolves: #1621383 - CVE-2018-16511 ghostscript: missing type check in type
checker (699659)
- Resolves: #1621159 - CVE-2018-15908 ghostscript: .tempfile file permission
issues (699657)
- Resolves: #1621381 - CVE-2018-15909 ghostscript: shading_param incomplete
type checking (699660)
|
ghostscript-cups-9.07-29.el7_5.2.x86_64
[55 KiB] |
Changelog
by David Kaspar [Dee'Kej] (2018-09-17):
- Fix MediaPosition, ManualFeed and MediaType with pxl devices (bug #1629842)
|
ghostscript-cups-9.07-28.el7.x86_64
[55 KiB] |
Changelog
by David Kaspar [Dee'Kej] (2017-05-11):
- Security fix for CVE-2017-8291 updated to address SIGSEGV
|
ghostscript-cups-9.07-20.el7_3.5.x86_64
[54 KiB] |
Changelog
by David Kaspar [Dee'Kej] (2017-05-11):
- Security fix for CVE-2017-8291 updated to address SIGSEGV
|
ghostscript-cups-9.07-20.el7_3.1.x86_64
[54 KiB] |
Changelog
by David Kaspar [Dee'Kej] (2016-11-03):
- Added security fixes for:
- CVE-2013-5653 (bug #1380327)
- CVE-2016-7977 (bug #1380415)
- CVE-2016-7978 (bug #1382300)
- CVE-2016-7979 (bug #1382305)
- CVE-2016-8602 (bug #1383940)
|