Skip to content

CentOS 7 - Updates for x86_64: applications/publishing: ghostscript

ghostscript - Interpreter for PostScript language & PDF

Website: https://ghostscript.com/
License: AGPLv3+
Vendor: CentOS
Description:
This package provides useful conversion utilities based on Ghostscript software,
for converting PS, PDF and other document formats between each other.

Ghostscript is a suite of software providing an interpreter for Adobe Systems'
PostScript (PS) and Portable Document Format (PDF) page description languages.
Its primary purpose includes displaying (rasterization & rendering) and printing
of document pages, as well as conversions between different document formats.

Packages

ghostscript-9.25-2.el7_7.3.i686 [111 KiB] Changelog by Zdenek Dohnal (2019-11-08):
- 1769340 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys
ghostscript-9.25-2.el7_7.3.x86_64 [111 KiB] Changelog by Zdenek Dohnal (2019-11-08):
- 1769340 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys
ghostscript-9.25-2.el7_7.2.x86_64 [111 KiB] Changelog by Martin Osvald (2019-08-22):
- Resolves: #1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdf_hook_DSC_Creator (701445)
- Resolves: #1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams (701444)
- Resolves: #1744003 - CVE-2019-14813 ghostscript: Safer Mode Bypass by .forceput Exposure in setsystemparams (701443)
- Resolves: #1744228 - CVE-2019-14817 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfexectoken and other procedures (701450)
ghostscript-9.25-2.el7_7.2.i686 [111 KiB] Changelog by Martin Osvald (2019-08-22):
- Resolves: #1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdf_hook_DSC_Creator (701445)
- Resolves: #1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams (701444)
- Resolves: #1744003 - CVE-2019-14813 ghostscript: Safer Mode Bypass by .forceput Exposure in setsystemparams (701443)
- Resolves: #1744228 - CVE-2019-14817 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfexectoken and other procedures (701450)
ghostscript-9.25-2.el7.i686 [110 KiB] Changelog by Martin Osvald (2019-04-02):
- obsoleted old ghostscript-devel to allow clean upgrade to libgs-devel
ghostscript-9.25-2.el7.x86_64 [110 KiB] Changelog by Martin Osvald (2019-04-02):
- obsoleted old ghostscript-devel to allow clean upgrade to libgs-devel
ghostscript-9.07-31.el7_6.11.x86_64 [4.3 MiB] Changelog by Martin Osvald (2019-03-21):
- Resolves: #1673398 - CVE-2019-3839 ghostscript: missing attack vector
  protections for CVE-2019-6116
- fix for pdf2dsc regression added
ghostscript-9.07-31.el7_6.11.i686 [4.3 MiB] Changelog by Martin Osvald (2019-03-21):
- Resolves: #1673398 - CVE-2019-3839 ghostscript: missing attack vector
  protections for CVE-2019-6116
- fix for pdf2dsc regression added
ghostscript-9.07-31.el7_6.10.i686 [4.3 MiB] Changelog by Martin Osvald (2019-01-29):
- Resolves: #1673915 - ghostscript: Regression: double comment chars
  '%' in gs_init.ps leading to missing metadata
- Resolves: #1678171 - CVE-2019-3835 ghostscript: superexec operator
  is available (700585)
- Resolves: #1680025 - CVE-2019-3838 ghostscript: forceput in DefineResource
  is still accessible (700576)
ghostscript-9.07-31.el7_6.10.x86_64 [4.3 MiB] Changelog by Martin Osvald (2019-01-29):
- Resolves: #1673915 - ghostscript: Regression: double comment chars
  '%' in gs_init.ps leading to missing metadata
- Resolves: #1678171 - CVE-2019-3835 ghostscript: superexec operator
  is available (700585)
- Resolves: #1680025 - CVE-2019-3838 ghostscript: forceput in DefineResource
  is still accessible (700576)
ghostscript-9.07-31.el7_6.9.x86_64 [4.3 MiB] Changelog by Martin Osvald (2019-01-24):
- Related: #1667442 - CVE-2019-6116 - added missing parts of patch
ghostscript-9.07-31.el7_6.9.i686 [4.3 MiB] Changelog by Martin Osvald (2019-01-24):
- Related: #1667442 - CVE-2019-6116 - added missing parts of patch
ghostscript-9.07-31.el7_6.6.i686 [4.3 MiB] Changelog by Martin Osvald (2018-12-10):
- Resolves: #1657822 - ghostscript: Regression: Warning: Dropping incorrect
  smooth shading object (Error: /rangecheck in --run--)
ghostscript-9.07-31.el7_6.6.x86_64 [4.3 MiB] Changelog by Martin Osvald (2018-12-10):
- Resolves: #1657822 - ghostscript: Regression: Warning: Dropping incorrect
  smooth shading object (Error: /rangecheck in --run--)
ghostscript-9.07-31.el7_6.3.i686 [4.3 MiB] Changelog by Martin Osvald (2018-11-28):
- Resolves: #1654290 ghostscript update breaks xdvi (gs: Error: /undefined in flushpage)
ghostscript-9.07-31.el7_6.3.x86_64 [4.3 MiB] Changelog by Martin Osvald (2018-11-28):
- Resolves: #1654290 ghostscript update breaks xdvi (gs: Error: /undefined in flushpage)
ghostscript-9.07-31.el7_6.1.i686 [4.3 MiB] Changelog by Martin Osvald (2018-11-14):
- Remove as many non-standard operators as possible to make the codebase
  closer to upstream for later CVEs
- Resolves: #1621383 - CVE-2018-16511 ghostscript: missing type check in type
  checker (699659)
- Resolves: #1621159 - CVE-2018-15908 ghostscript: .tempfile file permission
  issues (699657)
- Resolves: #1621381 - CVE-2018-15909 ghostscript: shading_param incomplete
  type checking (699660)
ghostscript-9.07-31.el7_6.1.x86_64 [4.3 MiB] Changelog by Martin Osvald (2018-11-14):
- Remove as many non-standard operators as possible to make the codebase
  closer to upstream for later CVEs
- Resolves: #1621383 - CVE-2018-16511 ghostscript: missing type check in type
  checker (699659)
- Resolves: #1621159 - CVE-2018-15908 ghostscript: .tempfile file permission
  issues (699657)
- Resolves: #1621381 - CVE-2018-15909 ghostscript: shading_param incomplete
  type checking (699660)
ghostscript-9.07-31.el7.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2018-09-10):
- Added security fixes for:
  - CVE-2018-16509 (bug #1621158)
  - CVE-2018-15910 (bug #1621160)
  - CVE-2018-16542 (bug #1621382)
ghostscript-9.07-31.el7.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2018-09-10):
- Added security fixes for:
  - CVE-2018-16509 (bug #1621158)
  - CVE-2018-15910 (bug #1621160)
  - CVE-2018-16542 (bug #1621382)
ghostscript-9.07-29.el7_5.2.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2018-09-17):
- Fix MediaPosition, ManualFeed and MediaType with pxl devices (bug #1629842)
ghostscript-9.07-29.el7_5.2.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2018-09-17):
- Fix MediaPosition, ManualFeed and MediaType with pxl devices (bug #1629842)
ghostscript-9.07-28.el7_4.2.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-08-22):
- Raise the default VMThreshold from 1Mb to 8Mb (bug #1479852)
ghostscript-9.07-28.el7_4.2.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-08-22):
- Raise the default VMThreshold from 1Mb to 8Mb (bug #1479852)
ghostscript-9.07-28.el7.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-05-11):
- Security fix for CVE-2017-8291 updated to address SIGSEGV
ghostscript-9.07-28.el7.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-05-11):
- Security fix for CVE-2017-8291 updated to address SIGSEGV
ghostscript-9.07-20.el7_3.7.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-05-24):
- Fix infinite 'for' loop in gdevp14.c file (bug #1455084)
ghostscript-9.07-20.el7_3.7.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-05-24):
- Fix infinite 'for' loop in gdevp14.c file (bug #1455084)
ghostscript-9.07-20.el7_3.5.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-05-11):
- Security fix for CVE-2017-8291 updated to address SIGSEGV
ghostscript-9.07-20.el7_3.5.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-05-11):
- Security fix for CVE-2017-8291 updated to address SIGSEGV
ghostscript-9.07-20.el7_3.3.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-01-20):
- bogus date in previous changelog entry fixed
ghostscript-9.07-20.el7_3.3.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2017-01-20):
- bogus date in previous changelog entry fixed
ghostscript-9.07-20.el7_3.1.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2016-11-03):
- Added security fixes for:
  - CVE-2013-5653 (bug #1380327)
  - CVE-2016-7977 (bug #1380415)
  - CVE-2016-7978 (bug #1382300)
  - CVE-2016-7979 (bug #1382305)
  - CVE-2016-8602 (bug #1383940)
ghostscript-9.07-20.el7_3.1.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2016-11-03):
- Added security fixes for:
  - CVE-2013-5653 (bug #1380327)
  - CVE-2016-7977 (bug #1380415)
  - CVE-2016-7978 (bug #1382300)
  - CVE-2016-7979 (bug #1382305)
  - CVE-2016-8602 (bug #1383940)
ghostscript-9.07-20.el7.x86_64 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2016-07-13):
- Fixed some complains of CovScan in ghostscript-hanging-in-convert.patch
ghostscript-9.07-20.el7.i686 [4.3 MiB] Changelog by David Kaspar [Dee'Kej] (2016-07-13):
- Fixed some complains of CovScan in ghostscript-hanging-in-convert.patch
ghostscript-9.07-18.el7.x86_64 [4.3 MiB] Changelog by Tim Waugh (2014-09-24):
- Applied patch from upstream to fix memory handling issue that could
  lead to crashes (bug #1105519).
ghostscript-9.07-18.el7.i686 [4.3 MiB] Changelog by Tim Waugh (2014-09-24):
- Applied patch from upstream to fix memory handling issue that could
  lead to crashes (bug #1105519).

Listing created by repoview