UBUNTU-CVE-2025-7462

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2025-7462

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-7462.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2025-7462

Upstream

CVE-2025-7462

Downstream

USN-7782-1

Related

USN-7782-1

Published

2025-07-12T06:15:00Z

Modified

2025-10-10T15:24:52Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVSS Calculator
5.3 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVSS Calculator
Ubuntu - low

Summary

[none]

Details

A vulnerability was found in Artifex GhostPDL up to 3989415a5b8e99b9d1b87cc9902bde9b7cdea145. It has been classified as problematic. This affects the function pdf_ferror of the file devices/vector/gdevpdf.c of the component New Output File Open Error Handler. The manipulation leads to null pointer dereference. It is possible to initiate the attack remotely. The identifier of the patch is 619a106ba4c4abed95110f84d5efcd7aee38c7cb. It is recommended to apply a patch to fix this issue.

References

Affected packages

Ubuntu:22.04:LTS

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@9.55.0~dfsg1-0ubuntu5.13?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.55.0~dfsg1-0ubuntu5.13

Affected versions

9.*

9.54.0~dfsg1-0ubuntu2

9.55.0~dfsg1-0ubuntu4

9.55.0~dfsg1-0ubuntu5

9.55.0~dfsg1-0ubuntu5.1

9.55.0~dfsg1-0ubuntu5.2

9.55.0~dfsg1-0ubuntu5.3

9.55.0~dfsg1-0ubuntu5.4

9.55.0~dfsg1-0ubuntu5.5

9.55.0~dfsg1-0ubuntu5.6

9.55.0~dfsg1-0ubuntu5.7

9.55.0~dfsg1-0ubuntu5.9

9.55.0~dfsg1-0ubuntu5.10

9.55.0~dfsg1-0ubuntu5.11

9.55.0~dfsg1-0ubuntu5.12

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "9.55.0~dfsg1-0ubuntu5.13",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "9.55.0~dfsg1-0ubuntu5.13",
            "binary_name": "ghostscript-x"
        },
        {
            "binary_version": "9.55.0~dfsg1-0ubuntu5.13",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "9.55.0~dfsg1-0ubuntu5.13",
            "binary_name": "libgs9"
        },
        {
            "binary_version": "9.55.0~dfsg1-0ubuntu5.13",
            "binary_name": "libgs9-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails",
    "availability": "No subscription required"
}

Ubuntu:24.04:LTS

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@10.02.1~dfsg1-0ubuntu7.8?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.02.1~dfsg1-0ubuntu7.8

Affected versions

10.*

10.01.2~dfsg1-0ubuntu2

10.01.2~dfsg1-0ubuntu2.1

10.02.1~dfsg1-0ubuntu1

10.02.1~dfsg1-0ubuntu2

10.02.1~dfsg1-0ubuntu5

10.02.1~dfsg1-0ubuntu6

10.02.1~dfsg1-0ubuntu7

10.02.1~dfsg1-0ubuntu7.1

10.02.1~dfsg1-0ubuntu7.3

10.02.1~dfsg1-0ubuntu7.4

10.02.1~dfsg1-0ubuntu7.5

10.02.1~dfsg1-0ubuntu7.6

10.02.1~dfsg1-0ubuntu7.7

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "10.02.1~dfsg1-0ubuntu7.8",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "10.02.1~dfsg1-0ubuntu7.8",
            "binary_name": "libgs-common"
        },
        {
            "binary_version": "10.02.1~dfsg1-0ubuntu7.8",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "10.02.1~dfsg1-0ubuntu7.8",
            "binary_name": "libgs10"
        },
        {
            "binary_version": "10.02.1~dfsg1-0ubuntu7.8",
            "binary_name": "libgs10-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails",
    "availability": "No subscription required"
}

Ubuntu:25.04

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@10.05.0dfsg1-0ubuntu1.2?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.05.0dfsg1-0ubuntu1.2

Affected versions

10.*

10.03.1~dfsg1-0ubuntu2

10.03.1~dfsg1-0ubuntu3

10.03.1~dfsg1-0ubuntu4

10.04.0~dfsg1-2ubuntu1

10.05.0~rc1~dfsg1-0ubuntu1

10.05.0dfsg1-0ubuntu1

10.05.0dfsg1-0ubuntu1.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "10.05.0dfsg1-0ubuntu1.2",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu1.2",
            "binary_name": "libgs-common"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu1.2",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu1.2",
            "binary_name": "libgs10"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu1.2",
            "binary_name": "libgs10-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails",
    "availability": "No subscription required"
}

Ubuntu:25.10

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@10.05.0dfsg1-0ubuntu4?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.05.0dfsg1-0ubuntu4

Affected versions

10.*

10.05.0dfsg1-0ubuntu1

10.05.0dfsg1-0ubuntu2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "10.05.0dfsg1-0ubuntu4",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu4",
            "binary_name": "libgs-common"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu4",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu4",
            "binary_name": "libgs10"
        },
        {
            "binary_version": "10.05.0dfsg1-0ubuntu4",
            "binary_name": "libgs10-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails",
    "availability": "No subscription required"
}

Ubuntu:Pro:16.04:LTS

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@9.26~dfsg+0-0ubuntu0.16.04.14+esm9?arch=source&distro=esm-infra/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.16~dfsg~0-0ubuntu3

9.16~dfsg~0-0ubuntu4

9.18~dfsg~0-0ubuntu1

9.18~dfsg~0-0ubuntu2

9.18~dfsg~0-0ubuntu2.2

9.18~dfsg~0-0ubuntu2.3

9.18~dfsg~0-0ubuntu2.4

9.18~dfsg~0-0ubuntu2.6

9.18~dfsg~0-0ubuntu2.7

9.18~dfsg~0-0ubuntu2.8

9.18~dfsg~0-0ubuntu2.9

9.25~dfsg+1-0ubuntu0.16.04.1

9.25~dfsg+1-0ubuntu0.16.04.2

9.25~dfsg+1-0ubuntu0.16.04.3

9.26~dfsg+0-0ubuntu0.16.04.1

9.26~dfsg+0-0ubuntu0.16.04.3

9.26~dfsg+0-0ubuntu0.16.04.4

9.26~dfsg+0-0ubuntu0.16.04.5

9.26~dfsg+0-0ubuntu0.16.04.6

9.26~dfsg+0-0ubuntu0.16.04.7

9.26~dfsg+0-0ubuntu0.16.04.8

9.26~dfsg+0-0ubuntu0.16.04.9

9.26~dfsg+0-0ubuntu0.16.04.10

9.26~dfsg+0-0ubuntu0.16.04.11

9.26~dfsg+0-0ubuntu0.16.04.12

9.26~dfsg+0-0ubuntu0.16.04.13

9.26~dfsg+0-0ubuntu0.16.04.14

9.26~dfsg+0-0ubuntu0.16.04.14+esm1

9.26~dfsg+0-0ubuntu0.16.04.14+esm2

9.26~dfsg+0-0ubuntu0.16.04.14+esm3

9.26~dfsg+0-0ubuntu0.16.04.14+esm4

9.26~dfsg+0-0ubuntu0.16.04.14+esm5

9.26~dfsg+0-0ubuntu0.16.04.14+esm6

9.26~dfsg+0-0ubuntu0.16.04.14+esm7

9.26~dfsg+0-0ubuntu0.16.04.14+esm8

9.26~dfsg+0-0ubuntu0.16.04.14+esm9

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.16.04.14+esm9",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.16.04.14+esm9",
            "binary_name": "ghostscript-x"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.16.04.14+esm9",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.16.04.14+esm9",
            "binary_name": "libgs9"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.16.04.14+esm9",
            "binary_name": "libgs9-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails"
}

Ubuntu:Pro:18.04:LTS

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@9.26~dfsg+0-0ubuntu0.18.04.18+esm4?arch=source&distro=esm-infra/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.21~dfsg+1-0ubuntu3

9.22~dfsg+1-0ubuntu1

9.22~dfsg+1-0ubuntu1.1

9.22~dfsg+1-0ubuntu1.2

9.25~dfsg+1-0ubuntu0.18.04.1

9.25~dfsg+1-0ubuntu0.18.04.2

9.26~dfsg+0-0ubuntu0.18.04.1

9.26~dfsg+0-0ubuntu0.18.04.3

9.26~dfsg+0-0ubuntu0.18.04.4

9.26~dfsg+0-0ubuntu0.18.04.5

9.26~dfsg+0-0ubuntu0.18.04.6

9.26~dfsg+0-0ubuntu0.18.04.7

9.26~dfsg+0-0ubuntu0.18.04.8

9.26~dfsg+0-0ubuntu0.18.04.9

9.26~dfsg+0-0ubuntu0.18.04.10

9.26~dfsg+0-0ubuntu0.18.04.11

9.26~dfsg+0-0ubuntu0.18.04.12

9.26~dfsg+0-0ubuntu0.18.04.13

9.26~dfsg+0-0ubuntu0.18.04.14

9.26~dfsg+0-0ubuntu0.18.04.15

9.26~dfsg+0-0ubuntu0.18.04.16

9.26~dfsg+0-0ubuntu0.18.04.17

9.26~dfsg+0-0ubuntu0.18.04.18

9.26~dfsg+0-0ubuntu0.18.04.18+esm1

9.26~dfsg+0-0ubuntu0.18.04.18+esm2

9.26~dfsg+0-0ubuntu0.18.04.18+esm3

9.26~dfsg+0-0ubuntu0.18.04.18+esm4

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.18.04.18+esm4",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.18.04.18+esm4",
            "binary_name": "ghostscript-x"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.18.04.18+esm4",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.18.04.18+esm4",
            "binary_name": "libgs9"
        },
        {
            "binary_version": "9.26~dfsg+0-0ubuntu0.18.04.18+esm4",
            "binary_name": "libgs9-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails"
}

Ubuntu:Pro:20.04:LTS

ghostscript

Package

Name: ghostscript
Purl: pkg:deb/ubuntu/ghostscript@9.50~dfsg-5ubuntu4.15+esm1?arch=source&distro=esm-infra/focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.27~dfsg+0-0ubuntu3

9.27~dfsg+0-0ubuntu4

9.50~dfsg-5ubuntu1

9.50~dfsg-5ubuntu2

9.50~dfsg-5ubuntu3

9.50~dfsg-5ubuntu4

9.50~dfsg-5ubuntu4.1

9.50~dfsg-5ubuntu4.2

9.50~dfsg-5ubuntu4.3

9.50~dfsg-5ubuntu4.4

9.50~dfsg-5ubuntu4.5

9.50~dfsg-5ubuntu4.6

9.50~dfsg-5ubuntu4.7

9.50~dfsg-5ubuntu4.8

9.50~dfsg-5ubuntu4.9

9.50~dfsg-5ubuntu4.10

9.50~dfsg-5ubuntu4.11

9.50~dfsg-5ubuntu4.12

9.50~dfsg-5ubuntu4.13

9.50~dfsg-5ubuntu4.14

9.50~dfsg-5ubuntu4.15

9.50~dfsg-5ubuntu4.15+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "9.50~dfsg-5ubuntu4.15+esm1",
            "binary_name": "ghostscript"
        },
        {
            "binary_version": "9.50~dfsg-5ubuntu4.15+esm1",
            "binary_name": "ghostscript-x"
        },
        {
            "binary_version": "9.50~dfsg-5ubuntu4.15+esm1",
            "binary_name": "libgs-dev"
        },
        {
            "binary_version": "9.50~dfsg-5ubuntu4.15+esm1",
            "binary_name": "libgs9"
        },
        {
            "binary_version": "9.50~dfsg-5ubuntu4.15+esm1",
            "binary_name": "libgs9-common"
        }
    ],
    "priority_reason": "Only a crash when opening a file fails"
}