[El-errata] ELSA-2019-0229 Important: Oracle Linux 7 ghostscript security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Jan 31 12:16:28 PST 2019


Oracle Linux Security Advisory ELSA-2019-0229

http://linux.oracle.com/errata/ELSA-2019-0229.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
ghostscript-9.07-31.el7_6.9.i686.rpm
ghostscript-9.07-31.el7_6.9.x86_64.rpm
ghostscript-cups-9.07-31.el7_6.9.x86_64.rpm
ghostscript-devel-9.07-31.el7_6.9.i686.rpm
ghostscript-devel-9.07-31.el7_6.9.x86_64.rpm
ghostscript-doc-9.07-31.el7_6.9.noarch.rpm
ghostscript-gtk-9.07-31.el7_6.9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/ghostscript-9.07-31.el7_6.9.src.rpm



Description of changes:

[9.07-31.el7_6.9]
- Related: #1667442 - CVE-2019-6116 - added missing parts of patch

[9.07-31.el7_6.8]
- Resolves: #1667442 - CVE-2019-6116 ghostscript: subroutines within
pseudo-operators must themselves be pseudo-operators

[9.07-31.el7_6.7]
- Resolves: #1665919 pdf2ps reports an error when reading from stdin
- Resolves: #1657333 - CVE-2018-16540 ghostscript: use-after-free in
copydevice handling (699661)
- Resolves: #1660569 - CVE-2018-19475 ghostscript: access bypass in
psi/zdevice2.c (700153)
- Resolves: #1660828 - CVE-2018-19476 ghostscript: access bypass in
psi/zicc.c
- Resolves: #1661278 - CVE-2018-19477 ghostscript: access bypass in
psi/zfjbig2.c (700168)






More information about the El-errata mailing list