-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 26 Mar 2025 10:10:35 +0100 Source: ghostscript Binary: ghostscript ghostscript-dbgsym ghostscript-x libgs-dev libgs10 libgs10-dbgsym Architecture: s390x Version: 10.0.0~dfsg-11+deb12u7 Distribution: bookworm-security Urgency: high Maintainer: s390x Build Daemon (zandonai) Changed-By: Salvatore Bonaccorso Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-x - transitional package for ghostscript libgs-dev - interpreter for the PostScript language and for PDF - Development libgs10 - interpreter for the PostScript language and for PDF - Library Changes: ghostscript (10.0.0~dfsg-11+deb12u7) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix confusion between bytes and shorts (CVE-2025-27835) * Avoid integer overflow leading to buffer overflow (CVE-2025-27832) * PCL interpreter - fix decode_glyph for Unicode * Prevent Unicode decoding overrun (CVE-2025-27831) * Fix potential print buffer overflow (CVE-2025-27836) * Fix potential Buffer overflow with DollarBlend (CVE-2025-27830) * Cope with double byte chars in TTF scanning code * Check TTF name size before copying to buffer. (CVE-2025-27833) * PDF interpreter - Guard against unsigned int overflow (CVE-2025-27834) * Fix Coverity IDs 457699 and 457700 Checksums-Sha1: 87f086da0162b0821003115ffbce917dce18f45a 5724 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_s390x.deb b6fccb8ca71710ec89a714e973ca97b9136cf842 28512 ghostscript-x_10.0.0~dfsg-11+deb12u7_s390x.deb 49313edd64fc20f11c5cd6e03ca6a384082d2da5 11906 ghostscript_10.0.0~dfsg-11+deb12u7_s390x-buildd.buildinfo 0e601b8f1ee42fad5fe711d36b093b6f3a80ba6c 57632 ghostscript_10.0.0~dfsg-11+deb12u7_s390x.deb 07f4a596ad5342eb19311b5aac8369b7479dc96b 40040 libgs-dev_10.0.0~dfsg-11+deb12u7_s390x.deb ffed44043531b6eeb0ce55a2415cfc707ff49377 9598552 libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_s390x.deb 55b71b9058fb77bd6a11df0cd768acea6586f177 2255252 libgs10_10.0.0~dfsg-11+deb12u7_s390x.deb Checksums-Sha256: 2ca214238f394c57853e0f37f0a3cf63ebaf10a74f2345241aeda82c735f75d1 5724 ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_s390x.deb da709f5f13fa88f3e5f789d4d7731cc4f4918ed0a4a12f24ab8d28196ec5980f 28512 ghostscript-x_10.0.0~dfsg-11+deb12u7_s390x.deb ddbbb976947cf8e9572079d8df0b6325e89e9d0db8792c2f75d90a50d199c6fc 11906 ghostscript_10.0.0~dfsg-11+deb12u7_s390x-buildd.buildinfo 24edda36b979d44e8fedbb36d16c8c37792c41648b2bd688f5ba78ad0fa428ea 57632 ghostscript_10.0.0~dfsg-11+deb12u7_s390x.deb 61833919e31d7ec7f012a3ed56ca68c0992f62f3ab8d56128d710725284ec6cf 40040 libgs-dev_10.0.0~dfsg-11+deb12u7_s390x.deb c8eb93d0403c412247177012d7239bac84b81cefddb6ea55b67cd564b87dac68 9598552 libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_s390x.deb d27ab63f751e9c81319003cd6767e4122b8c2f4c1f3bbea924c243c98f5b7ea7 2255252 libgs10_10.0.0~dfsg-11+deb12u7_s390x.deb Files: 25f5b6822eed8f8c53f92d0b9b33e66b 5724 debug optional ghostscript-dbgsym_10.0.0~dfsg-11+deb12u7_s390x.deb a1c53691aad9399bdc540ea71500aedc 28512 oldlibs optional ghostscript-x_10.0.0~dfsg-11+deb12u7_s390x.deb 83eb13d94105e5933b9f43a8fd5ebdaa 11906 text optional ghostscript_10.0.0~dfsg-11+deb12u7_s390x-buildd.buildinfo 6cc7412728452b97e3f0b5764870314f 57632 text optional ghostscript_10.0.0~dfsg-11+deb12u7_s390x.deb c2dd9467e8b9f9942e683493a232bb55 40040 libdevel optional libgs-dev_10.0.0~dfsg-11+deb12u7_s390x.deb 35aaa2f9cc848400e6f317645c9de210 9598552 debug optional libgs10-dbgsym_10.0.0~dfsg-11+deb12u7_s390x.deb 34f880c345f7989d98a7e855ac0494b4 2255252 libs optional libgs10_10.0.0~dfsg-11+deb12u7_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEu0D/YpnnSxv8epH9AKOyQzsWVasFAmfj0XsACgkQAKOyQzsW VaszQxAAkTsAAxQEEHEy5P2Qp8Ky9YJ9qngaDkgrqIfvmO/rU2KrqcQHxfevS1Gb sno0AGhKnogA5kXTL9gQziL0HMVmBdSQEIFbiHvKPYTPfPFgPAuiwQrS/xMv4YHk s486KBvc6pvQdUdQSFPNEcIF8RxNTbcnfTgi7b2I1ASPPQa8Bu8uMwh/HzN+jX7T cSlGuUd1dXu8Gjkkx/azN4jtLJwKg4QR4rXetSbJB91q7h+QF9UdO3b4O9PizyG5 IQSvJGjYcrxSl+NN6zDmQNUXa4lkjHOP3HUE9ol8lfAKwy7Zq6/vuNuJ6OfwErY1 dqIJbgBidx2097zeSDjaAXiMy0Etnh0KXSng63pOikx1+bAFXRDzn0Dpxpmt4eJc 2gp9EQh0sx61CxNvpGHVpXuvdCXP9fqPowhtSZoQ0oyKUJqfAx+2a0+FBaHGjfcl j0ixQQZjtKY+xKBXafdqexqW4GVT1wxX7w4FR/LNcJ0ZSHXtuIMGGgKZPRJUD05Q CoK4M4d0Crqlem5cv7oXiIAtObG4bMJpAd/W5MoHF9OkPbQRCpc1nxknoSQAP5h6 NXYkdu3GMTeZr6cv+mw1R8evJresPRDp0bhAz4BfpLya9u8liX5tFqqnt++o0Qfb 2ZPTYhumo2dDfGxqUKj6P7FR0LAPtjRPcwNYa/ChOsPEEPpnjfU= =CPAL -----END PGP SIGNATURE-----