CLSA-2025-1744782967

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1744782967
Upstream
Published
2025-04-16T05:56:12Z
Modified
2026-06-01T00:30:38.566882634Z
Summary
ghostscript: Fix of 3 CVEs
Details
  • CVE-2024-33871: fix arbitrary code execution by restricting Driver parameter to load only known dynamic libraries in gdevopvp.c
  • CVE-2023-38559: fix buffer overflow flaw in devnpcxwrite_rle() function by adding input validation checks
  • CVE-2024-29510: fix memory corruption and SAFER sandbox bypass by preventing format string injection with a uniprint device
References

Affected packages

TuxCare:AlmaLinux:9.2
ghostscript

Package

Name
ghostscript
Purl
pkg:rpm/tuxcare/ghostscript?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
ghostscript-doc

Package

Name
ghostscript-doc
Purl
pkg:rpm/tuxcare/ghostscript-doc?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
ghostscript-gtk

Package

Name
ghostscript-gtk
Purl
pkg:rpm/tuxcare/ghostscript-gtk?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
ghostscript-tools-dvipdf

Package

Name
ghostscript-tools-dvipdf
Purl
pkg:rpm/tuxcare/ghostscript-tools-dvipdf?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
ghostscript-tools-fonts

Package

Name
ghostscript-tools-fonts
Purl
pkg:rpm/tuxcare/ghostscript-tools-fonts?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
ghostscript-tools-printing

Package

Name
ghostscript-tools-printing
Purl
pkg:rpm/tuxcare/ghostscript-tools-printing?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
ghostscript-x11

Package

Name
ghostscript-x11
Purl
pkg:rpm/tuxcare/ghostscript-x11?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
libgs

Package

Name
libgs
Purl
pkg:rpm/tuxcare/libgs?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"
libgs-devel

Package

Name
libgs-devel
Purl
pkg:rpm/tuxcare/libgs-devel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.54.0-11.el9_2.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1744782967.json"