-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 26 Mar 2025 10:10:35 +0100
Source: ghostscript
Binary: ghostscript ghostscript-dbgsym ghostscript-x libgs-dev libgs10 libgs10-dbgsym
Architecture: mips64el
Version: 10.0.0~dfsg-11+deb12u7
Distribution: bookworm-security
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-03) <buildd_mips64el-mipsel-osuosl-03@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 ghostscript - interpreter for the PostScript language and for PDF
 ghostscript-x - transitional package for ghostscript
 libgs-dev  - interpreter for the PostScript language and for PDF - Development
 libgs10    - interpreter for the PostScript language and for PDF - Library
Changes:
 ghostscript (10.0.0~dfsg-11+deb12u7) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix confusion between bytes and shorts (CVE-2025-27835)
   * Avoid integer overflow leading to buffer overflow (CVE-2025-27832)
   * PCL interpreter - fix decode_glyph for Unicode
   * Prevent Unicode decoding overrun (CVE-2025-27831)
   * Fix potential print buffer overflow (CVE-2025-27836)
   * Fix potential Buffer overflow with DollarBlend (CVE-2025-27830)
   * Cope with double byte chars in TTF scanning code
   * Check TTF name size before copying to buffer. (CVE-2025-27833)
   * PDF interpreter - Guard against unsigned int overflow (CVE-2025-27834)
   * Fix Coverity IDs 457699 and 457700
Checksums-Sha1:
 304903e515d412c1e4302978cda043711920dad6 6260 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_mips64el.deb
 71a7bd5e0a1be618eee8a547b09aeb1525b90816 28512 ghostscript-x_10.0.0~dfsg-11+deb12u7_mips64el.deb
 856a716b0a7819793c2a00cb0038e88c53c90c85 11954 ghostscript_10.0.0~dfsg-11+deb12u7_mips64el-buildd.buildinfo
 980d8e3e2aef0a36b5b638d10cdd71a65eab87a8 57892 ghostscript_10.0.0~dfsg-11+deb12u7_mips64el.deb
 d3a316b0f5556b2329a0c83264fd7d68965cd18d 40052 libgs-dev_10.0.0~dfsg-11+deb12u7_mips64el.deb
 957896a185fe0032ccc368a0fb3f6b2c7582e035 9853684 libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_mips64el.deb
 4156c21ba42b73a9ff07f607fcf152d73ec243a9 2218700 libgs10_10.0.0~dfsg-11+deb12u7_mips64el.deb
Checksums-Sha256:
 6e0da50a0bb414427acffb9b93921d9a23475a9ca13b0e4b292c264b2967fd2c 6260 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_mips64el.deb
 22e209e80d55535e096acfde220ee9305e84fc528263fd321175e65f191ac1e4 28512 ghostscript-x_10.0.0~dfsg-11+deb12u7_mips64el.deb
 15beea031557025999acaf3af003cb596134bdf59981b1292c25f5f3f6770b0f 11954 ghostscript_10.0.0~dfsg-11+deb12u7_mips64el-buildd.buildinfo
 3d1644ad41334cd019d63709e955b83f049a6569cfffab3a1473d58da6b7c4e5 57892 ghostscript_10.0.0~dfsg-11+deb12u7_mips64el.deb
 e4413c2353f4b0fe5473b544fba9b1a960f5c43d7eb2d00f965e3ebdcf896c5d 40052 libgs-dev_10.0.0~dfsg-11+deb12u7_mips64el.deb
 274379ff46eb7bb3c1261b59f8c622d05fe64f416560ba8e10d1e780180906ad 9853684 libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_mips64el.deb
 52d381e53f69d4f8f0c54088db7cc7fa760e994d34f1bbe7ecf07dec91b4834c 2218700 libgs10_10.0.0~dfsg-11+deb12u7_mips64el.deb
Files:
 1de4109623cc008cbb86c0a3ff99c5ef 6260 debug optional ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_mips64el.deb
 0e13dc4a49abdcf4b0a9fbd58cfb4040 28512 oldlibs optional ghostscript-x_10.0.0~dfsg-11+deb12u7_mips64el.deb
 1059c34b45f30152b8bb8d45a1d81035 11954 text optional ghostscript_10.0.0~dfsg-11+deb12u7_mips64el-buildd.buildinfo
 2b2f1bad941c9d02910383998e8b6019 57892 text optional ghostscript_10.0.0~dfsg-11+deb12u7_mips64el.deb
 581aa854939171307918c42a60f4d5a7 40052 libdevel optional libgs-dev_10.0.0~dfsg-11+deb12u7_mips64el.deb
 956246eef3fcc50fbb70ccf72f94510e 9853684 debug optional libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_mips64el.deb
 cc746ba3c28312ebe2263ce8f63d95da 2218700 libs optional libgs10_10.0.0~dfsg-11+deb12u7_mips64el.deb

-----BEGIN PGP SIGNATURE-----
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=HJnW
-----END PGP SIGNATURE-----