USN-3866-1 fixed vulnerabilities in Ghostscript. The new Ghostscript version introduced a regression when printing certain page sizes. This update fixes the problem.
Original advisory details:
Tavis Ormandy discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause a denial of service.
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "ghostscript",
"binary_version": "9.26~dfsg+0-0ubuntu0.14.04.5"
},
{
"binary_name": "ghostscript-x",
"binary_version": "9.26~dfsg+0-0ubuntu0.14.04.5"
},
{
"binary_name": "libgs9",
"binary_version": "9.26~dfsg+0-0ubuntu0.14.04.5"
},
{
"binary_name": "libgs9-common",
"binary_version": "9.26~dfsg+0-0ubuntu0.14.04.5"
}
]
}
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "ghostscript",
"binary_version": "9.26~dfsg+0-0ubuntu0.16.04.5"
},
{
"binary_name": "ghostscript-x",
"binary_version": "9.26~dfsg+0-0ubuntu0.16.04.5"
},
{
"binary_name": "libgs9",
"binary_version": "9.26~dfsg+0-0ubuntu0.16.04.5"
},
{
"binary_name": "libgs9-common",
"binary_version": "9.26~dfsg+0-0ubuntu0.16.04.5"
}
]
}
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "ghostscript",
"binary_version": "9.26~dfsg+0-0ubuntu0.18.04.5"
},
{
"binary_name": "ghostscript-x",
"binary_version": "9.26~dfsg+0-0ubuntu0.18.04.5"
},
{
"binary_name": "libgs9",
"binary_version": "9.26~dfsg+0-0ubuntu0.18.04.5"
},
{
"binary_name": "libgs9-common",
"binary_version": "9.26~dfsg+0-0ubuntu0.18.04.5"
}
]
}