
USN-4193-1: Ghostscript vulnerability
USN-4193-1: Ghostscript vulnerability ghostscript vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.10 Ubuntu 19.04 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary Ghostscript could be made to crash, access files, or run programs if it opened a specially crafted file. Software Description ghostscript – PostScript and PDF interpreter Details Paul Manfred and Lukas Schauer discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause a denial of service. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.10 ghostscript – 9.27~dfsg+0-0ubuntu3.1 libgs9 – 9.27~dfsg+0-0ubuntu3.1 Ubuntu 19.04 ghostscript – 9.26~dfsg+0-0ubuntu7.4 libgs9 – 9.26~dfsg+0-0ubuntu7.4 Ubuntu 18.04 LTS ghostscript – 9.26~dfsg+0-0ubuntu0.18.04.12 [ more… ]