Mageia alert MGASA-2025-0098 (ghostscript)
| From: | Mageia Updates <updates-announce@ml.mageia.org> | |
| To: | updates-announce@ml.mageia.org | |
| Subject: | [updates-announce] MGASA-2025-0098: Updated ghostscript packages fix security vulnerabilities | |
| Date: | Sat, 15 Mar 2025 02:41:16 +0100 | |
| Message-ID: | <20250315014116.C7D7DA017D@duvel.mageia.org> | |
| Archive-link: | Article |
MGASA-2025-0098 - Updated ghostscript packages fix security vulnerabilities Publication date: 15 Mar 2025 URL: https://advisories.mageia.org/MGASA-2025-0098.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-27830, CVE-2025-27831, CVE-2025-27832, CVE-2025-27833, CVE-2025-27834, CVE-2025-27835, CVE-2025-27836, CVE-2025-27837 Description: This release addresses CVEs: CVE-2025-27835, CVE-2025-27832, CVE-2025-27831, CVE-2025-27836, CVE-2025-27830, CVE-2025-27833, CVE-2025-27837, CVE-2025-27834 The 10.05.0 release deprecates the non-standard operator "selectdevice", all code should now be using the standard "setpagedevice" operator. "selectdevice" will be removed in the 10.06.0 release. We now support production of PDF/X-1a and PDF/X-4a in addition to the existing support for PDF/X-3 References: - https://bugs.mageia.org/show_bug.cgi?id=34088 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2... SRPMS: - 9/core/ghostscript-10.05.0-1.mga9