CLSA-2025-1745272309

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1745272309

Upstream

CVE-2024-33869

CVE-2024-33870

Published

2025-04-21T21:51:54Z

Modified

2026-06-01T00:30:41.535252711Z

Summary

ghostscript: Fix of 2 CVEs

Details

CVE-2024-33869: fix path traversal and command execution vulnerability in base/gpmisc.c
CVE-2024-33870: fix path traversal vulnerability to prevent unauthorized access to arbitrary files by restricting access to permitted paths

References

https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2025-1745272309.html

Affected packages

TuxCare:AlmaLinux:9.2

ghostscript

Package

Name: ghostscript
Purl: pkg:rpm/tuxcare/ghostscript?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

ghostscript-doc

Package

Name: ghostscript-doc
Purl: pkg:rpm/tuxcare/ghostscript-doc?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

ghostscript-gtk

Package

Name: ghostscript-gtk
Purl: pkg:rpm/tuxcare/ghostscript-gtk?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

ghostscript-tools-dvipdf

Package

Name: ghostscript-tools-dvipdf
Purl: pkg:rpm/tuxcare/ghostscript-tools-dvipdf?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

ghostscript-tools-fonts

Package

Name: ghostscript-tools-fonts
Purl: pkg:rpm/tuxcare/ghostscript-tools-fonts?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

ghostscript-tools-printing

Package

Name: ghostscript-tools-printing
Purl: pkg:rpm/tuxcare/ghostscript-tools-printing?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

ghostscript-x11

Package

Name: ghostscript-x11
Purl: pkg:rpm/tuxcare/ghostscript-x11?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

libgs

Package

Name: libgs
Purl: pkg:rpm/tuxcare/libgs?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"

libgs-devel

Package

Name: libgs-devel
Purl: pkg:rpm/tuxcare/libgs-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.54.0-11.el9_2.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1745272309.json"