-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 26 Mar 2025 10:10:35 +0100 Source: ghostscript Binary: ghostscript ghostscript-dbgsym ghostscript-x libgs-dev libgs10 libgs10-dbgsym Architecture: i386 Version: 10.0.0~dfsg-11+deb12u7 Distribution: bookworm-security Urgency: high Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) Changed-By: Salvatore Bonaccorso Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-x - transitional package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs10 - interpreter for the PostScript language and for PDF - Library Changes: ghostscript (10.0.0~dfsg-11+deb12u7) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix confusion between bytes and shorts (CVE-2025-27835) * Avoid integer overflow leading to buffer overflow (CVE-2025-27832) * PCL interpreter - fix decode_glyph for Unicode * Prevent Unicode decoding overrun (CVE-2025-27831) * Fix potential print buffer overflow (CVE-2025-27836) * Fix potential Buffer overflow with DollarBlend (CVE-2025-27830) * Cope with double byte chars in TTF scanning code * Check TTF name size before copying to buffer. (CVE-2025-27833) * PDF interpreter - Guard against unsigned int overflow (CVE-2025-27834) * Fix Coverity IDs 457699 and 457700 Checksums-Sha1: a03809856a030f9bd6b3911d0b487a2113a94bed 5576 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_i386.deb a2714c0bcaa3cb3574271aa088cb595008e6ff2e 28512 ghostscript-x_10.0.0~dfsg-11+deb12u7_i386.deb 65c3c37d6c7405d199213b2fd62748c01c8b4e82 12054 ghostscript_10.0.0~dfsg-11+deb12u7_i386-buildd.buildinfo 19beece98107708aca2a1b0705aad2fb7ca37df3 57752 ghostscript_10.0.0~dfsg-11+deb12u7_i386.deb 64b62f08e357c42357d2680c1746e00ecb7f096a 40048 libgs-dev_10.0.0~dfsg-11+deb12u7_i386.deb 9164ec79d32ec01d191bb031b98562a0edacad83 8708436 libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_i386.deb 8408cd6fbd569e5fa652eefcead1e19e054dc5ad 2608888 libgs10_10.0.0~dfsg-11+deb12u7_i386.deb Checksums-Sha256: a9a3a7a3c6a87149ce6cdd5ffc9ccb630aa39f2c6d91262d5ac0c8919fbb59a0 5576 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_i386.deb 4a2d678630ae1954e608631acfcb4c25f4af69caa715c1925c7118567d87406c 28512 ghostscript-x_10.0.0~dfsg-11+deb12u7_i386.deb 173323d1502458186e260bc5e92e1562d8ae49e13d5aa0030823ba8c506266f4 12054 ghostscript_10.0.0~dfsg-11+deb12u7_i386-buildd.buildinfo a1c620f18123f43a53b96763d29e546a10341f58c6b3e0ba4377b564f8514371 57752 ghostscript_10.0.0~dfsg-11+deb12u7_i386.deb a6d739756048a503e1eccc81241eda40992f9129f376f574b8dfdc5c375d5342 40048 libgs-dev_10.0.0~dfsg-11+deb12u7_i386.deb 756dfe365778de413e0a1d3314289011542ad3c9fc4d8380a64836510a512779 8708436 libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_i386.deb bbc4df667a9ba845ce5af45c43d945e641da3afbd76eb76f8206c86229141038 2608888 libgs10_10.0.0~dfsg-11+deb12u7_i386.deb Files: 6569a0486657e874794354d6fbc40268 5576 debug optional ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_i386.deb 9fe4da00f1967d4455f8485f28ab0a5d 28512 oldlibs optional ghostscript-x_10.0.0~dfsg-11+deb12u7_i386.deb 4b9fe911c0f0c240d9aff615ac44562d 12054 text optional ghostscript_10.0.0~dfsg-11+deb12u7_i386-buildd.buildinfo 402c54f69929f59d9ffaf6471f2383f5 57752 text optional ghostscript_10.0.0~dfsg-11+deb12u7_i386.deb ac25bbfeef1a5fc300a3b65f0abc3a50 40048 libdevel optional libgs-dev_10.0.0~dfsg-11+deb12u7_i386.deb 4306195a8d3d12bee9d734f0648ef75f 8708436 debug optional libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_i386.deb fc69e1bc3f5e66d9b0edcf67ea658724 2608888 libs optional libgs10_10.0.0~dfsg-11+deb12u7_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEaPzFtKPtF0JrKPV5iZlfn74WV6kFAmfj0aoACgkQiZlfn74W V6mhsA/+OWGgWtnQoc0F+FOT5T3TH5lsVlVm7AtLQuNNU2TwKWy8CiePX9y/q0sC nXghsY4PKMB88YzEFBnlm1AY6AS1LzuTM8YntDmV3maBr7e9MbJ5gvE4D0K7NZus SzSrb21MmGHvOe/V+M0kmB+Boo7iJRux1OUysBcUkHAKgbBFV0UQ+lxrDN0UQPGH HD3lrdSlswG838ll+z6A/y+OOiJKDAaFIT7DEGjwgEdOyAdHxGquiXyxAVWCOW3Y tHBinhkJrGUgTSORpxhGREZeu+PH+XZ9LyHdr+wlEVGjdUlQOz7tgsdlSfiWHuvt ZQww+yFyBCtb88Jv1PfM01Ir6mOSJlidd7foyGMLGrUe6J2YTqnJqWnUQsyOAvWL AJE5GE9MjBxM1cMs2bcIfQmxS53xd9BI/caVDgDymnslpthFQnHeZgZhsboGow0V dF98YXveXLNw1QXi/6g0Y66deAcpi3G1JzJq6fg2tUIgBre5lu3RiU7/vJXCcnjg 6w6KZE0zPdkelXKHyPUxnzZrm9ejRPrkYib/CRqF9sWIJeP89miIkIGKxleZfrGv YM2iJnGBF+oLgeEynFX+54UKOJ83LUWmPFwKTLqnKN4AH9O9Xy5kebjZ32vOcSvO iB/wQYxeOa/RIeN/6qz4m5LP+msc56GRsK9QsQPK2tVgLxBP0wM= =TYWy -----END PGP SIGNATURE-----