-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 26 Mar 2025 10:10:35 +0100 Source: ghostscript Architecture: source Version: 10.0.0~dfsg-11+deb12u7 Distribution: bookworm-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Changes: ghostscript (10.0.0~dfsg-11+deb12u7) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix confusion between bytes and shorts (CVE-2025-27835) * Avoid integer overflow leading to buffer overflow (CVE-2025-27832) * PCL interpreter - fix decode_glyph for Unicode * Prevent Unicode decoding overrun (CVE-2025-27831) * Fix potential print buffer overflow (CVE-2025-27836) * Fix potential Buffer overflow with DollarBlend (CVE-2025-27830) * Cope with double byte chars in TTF scanning code * Check TTF name size before copying to buffer. (CVE-2025-27833) * PDF interpreter - Guard against unsigned int overflow (CVE-2025-27834) * Fix Coverity IDs 457699 and 457700 Checksums-Sha1: da90c0b2220bf1384c4ef9ae5f088b7cfd0f2202 3023 ghostscript_10.0.0~dfsg-11+deb12u7.dsc b0a4f9e0599671f8bf60320267c7d0d14bcc4838 108216 ghostscript_10.0.0~dfsg-11+deb12u7.debian.tar.xz 054a93901d32c425986e57bf3598c332e4b13220 7123 ghostscript_10.0.0~dfsg-11+deb12u7_source.buildinfo Checksums-Sha256: 0fcf5e9cebac4104c0673673cd2154063de4516179aadd0b6277e4784ba02609 3023 ghostscript_10.0.0~dfsg-11+deb12u7.dsc 3feea42d295481ae4fafec097a0f82e181b7117c37fd35bff81305708d559b51 108216 ghostscript_10.0.0~dfsg-11+deb12u7.debian.tar.xz 73d5178c3e5ba8da893627833f9a60e336965dfb162fdf6a32ed01711e175696 7123 ghostscript_10.0.0~dfsg-11+deb12u7_source.buildinfo Files: 36186a134bee5092450c32ea20ad1fd5 3023 text optional ghostscript_10.0.0~dfsg-11+deb12u7.dsc 76d8db34852c12b1c66beffe9e2d66a6 108216 text optional ghostscript_10.0.0~dfsg-11+deb12u7.debian.tar.xz 04e38ee65ddffea4790af3ab534bb61a 7123 text optional ghostscript_10.0.0~dfsg-11+deb12u7_source.buildinfo -----BEGIN PGP SIGNATURE----- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmfjxNlfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89ECFEP/ijVeEl5uon1+vuT/kl4WZsQSFi1VM8z 2tu6+xaI8Rs79I4AC5B/2WIZ6qafi9g0TBSJbc0Fitu0cSfnoZvjnOS7NfChpCRl uk79MbzZ57BsK2KFNj37G8dn2EkyaaiprtBe+ANHRldbaMMDmWYHgvEORb9mBB4F 3EBnjJCNupuI/Kjn3diCx7PLLHhvK6f0DLe7knC46+/wNy0kEJLIqSBhTUHJD085 MarpGnD9X3XHGK07RKnl5eb8Fja6ghpAMNq0hOn8Wr8jVr/urd9UNN+HEJY/Ja18 M00pTUsDFyB/E1V9zVlI2ven1CzX3Us7nAVowGf53sjWhgVGXGdpmGBHSfnBQa9W oi/p2b6C4GZg2XAvAM6nMu64wSkRelXA0KuYTrPiCpjWQS+823PAnksSq0LLqc6P HuJM343ULDIr2c+D4wPlxl0A0wfbvzHn409NByfCaHXDI1bKZoAoPYE/6xeJOOQk qiU9gO3sWFH3tArp0liJ35ei2lrNPkRdiMYhKiee/RowMX7Mg0i2/Vx0mGqAiQTD qPdqJJjjKk3FkVW3NRXtNu7GTxmsspNnu3UWHzDylOEEXZmwX8wFcU0mAH9yUdz6 8vx7VzTGj+U5ZxaI10DbanNx3Y95QBQKlAgoRwdpAFCVIDsBkq0Lz5iIQf879A5T Rg/WAseJd4YK =98Ql -----END PGP SIGNATURE-----