CVE-2023-52722

Published: 28 April 2024

An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.

Priority

Status

Package	Release	Status
ghostscript Launchpad, Ubuntu, Debian	bionic	Needed
	focal	Needed
	jammy	Needed
	mantic	Needed
	noble	Not vulnerable (10.02.1~dfsg1-0ubuntu7)
	upstream	Released (10.02.0~dfsg-1)
	xenial	Needed
	Patches: upstream: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=afd7188f74918cb51b5fb89f52b54eb16e8acfd1 upstream: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=1ff9a695947967d2d327c45bf5145dd381fc1745

References

https://www.cve.org/CVERecord?id=CVE-2023-52722
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.