[El-errata] ELSA-2025-7586 Moderate: Oracle Linux 9 ghostscript security update

Fri May 23 17:11:39 UTC 2025

Oracle Linux Security Advisory ELSA-2025-7586

http://linux.oracle.com/errata/ELSA-2025-7586.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
ghostscript-9.54.0-19.el9_6.x86_64.rpm
ghostscript-doc-9.54.0-19.el9_6.noarch.rpm
ghostscript-tools-dvipdf-9.54.0-19.el9_6.x86_64.rpm
ghostscript-tools-fonts-9.54.0-19.el9_6.x86_64.rpm
ghostscript-tools-printing-9.54.0-19.el9_6.x86_64.rpm
ghostscript-x11-9.54.0-19.el9_6.x86_64.rpm
libgs-9.54.0-19.el9_6.i686.rpm
libgs-9.54.0-19.el9_6.x86_64.rpm
ghostscript-9.54.0-19.el9_6.i686.rpm
ghostscript-tools-fonts-9.54.0-19.el9_6.i686.rpm
ghostscript-tools-printing-9.54.0-19.el9_6.i686.rpm
libgs-devel-9.54.0-19.el9_6.i686.rpm
libgs-devel-9.54.0-19.el9_6.x86_64.rpm

aarch64:
ghostscript-9.54.0-19.el9_6.aarch64.rpm
ghostscript-doc-9.54.0-19.el9_6.noarch.rpm
ghostscript-tools-dvipdf-9.54.0-19.el9_6.aarch64.rpm
ghostscript-tools-fonts-9.54.0-19.el9_6.aarch64.rpm
ghostscript-tools-printing-9.54.0-19.el9_6.aarch64.rpm
ghostscript-x11-9.54.0-19.el9_6.aarch64.rpm
libgs-9.54.0-19.el9_6.aarch64.rpm
libgs-devel-9.54.0-19.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//ghostscript-9.54.0-19.el9_6.src.rpm

Related CVEs:

CVE-2025-27832

Description of changes:

[9.54.0-19]
- RHEL-88966 CVE-2025-27832 ghostscript: NPDL device: Compression buffer overflow

[9.54.0-18]
- RHEL-18397 CVE-2023-46751 ghostscript: dangling pointer in gdev_prn_open_printer_seekable()
- RHEL-67048 CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space
- RHEL-67053 CVE-2024-46954 ghostscript: Directory Traversal in Ghostscript via Overlong UTF-8 Encoding
- RHEL-67053 CVE-2024-46953 ghostscript: Path Traversal and Code Execution via Integer Overflow in Ghostscript
- RHEL-67053 CVE-2024-46956 ghostscript: Out-of-Bounds Data Access in Ghostscript Leads to Arbitrary Code Execution