This bug was fixed in the package ghostscript - 10.05.0dfsg1-0ubuntu4
---------------
ghostscript (10.05.0dfsg1-0ubuntu4) questing; urgency=medium
* SECURITY UPDATE: null pointer deref on file write failure
- debian/patches/CVE-2025-7462.patch: catch a null file pointer closing
pdfwrite in devices/vector/gdevpdf.c.
- CVE-2025-7462
* SECURITY UPDATE: stack overflow in pdf_write_cmap
- debian/patches/CVE-2025-59798.patch: use dynamically allocated buffer
and check return codes in devices/vector/gdevpdtw.c.
- CVE-2025-59798
* SECURITY UPDATE: stack overflow in pdfmark_coerce_dest
- debian/patches/CVE-2025-59799.patch: bounds check some strings in
devices/vector/gdevpdfm.c.
- CVE-2025-59799
* SECURITY UPDATE: heap overflow in ocr_begin_page
- debian/patches/CVE-2025-59800.patch: fix int overflow in
devices/gdevpdfocr.c.
- CVE-2025-59800
-- Marc Deslauriers <[email protected]> Thu, 25 Sep 2025
12:14:26 -0400
** Changed in: ghostscript (Ubuntu)
Status: Fix Committed => Fix Released
** CVE added: https://cve.org/CVERecord?id=CVE-2025-59798
** CVE added: https://cve.org/CVERecord?id=CVE-2025-59799
** CVE added: https://cve.org/CVERecord?id=CVE-2025-59800
** CVE added: https://cve.org/CVERecord?id=CVE-2025-7462
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2124948
Title:
ghostscript ftbfs in questing archive rebuild
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ghostscript/+bug/2124948/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
