|
|
Log in / Subscribe / Register

Ubuntu alert USN-5396-1 (ghostscript)



From:
              Marc Deslauriers <marc.deslauriers@canonical.com>


To:
              "ubuntu-security-announce@lists.ubuntu.com" <ubuntu-security-announce@lists.ubuntu.com>


Subject:
              [USN-5396-1] Ghostscript vulnerability


Date:
              Thu, 28 Apr 2022 14:40:59 -0400


Message-ID:
              <6189569a-46a4-aabb-cf89-78f5b0f538c8@canonical.com>


==========================================================================
Ubuntu Security Notice USN-5396-1
April 28, 2022

ghostscript vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Ghostscript could be made to crash, access files, or run programs if it
opened a specially crafted file.

Software Description:
- ghostscript: PostScript and PDF interpreter

Details:

It was discovered that Ghostscript incorrectly handled certain PostScript
files. If a user or automated system were tricked into processing a
specially crafted file, a remote attacker could possibly use this issue to
access arbitrary files, execute arbitrary code, or cause a denial of
service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  ghostscript                     9.26~dfsg+0-0ubuntu0.18.04.16
  libgs9                          9.26~dfsg+0-0ubuntu0.18.04.16

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-5396-1
  CVE-2019-25059

Package Information:
  https://launchpad.net/ubuntu/+source/ghostscript/9.26~dfs...
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds