Nixpkgs security tracker
Untriaged
Permalink
CVE-2023-4042
5.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
Ghostscript: incomplete fix for cve-2020-16305
A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.
References
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
-
-
-
-
-
-
https://bugzilla.redhat.com/show_bug.cgi?id=1870257 x_transferred
-
Affected products
ghostscript
- *
- ==9.51
gimp:flatpak/ghostscript
- *
Matching in nixpkgs
pkgs.ghostscriptX
PostScript interpreter (mainline version)
pkgs.ghostscript_headless
PostScript interpreter (mainline version)
pkgs.python312Packages.ghostscript
Interface to the Ghostscript C-API using ctypes.
pkgs.python313Packages.ghostscript
Interface to the Ghostscript C-API using ctypes.
pkgs.tests.texlive.dvipng.ghostscript
None
pkgs.haskellPackages.ghostscript-parallel
Let Ghostscript render pages in parallel
Package maintainers
-
@tobim Tobias Mayer <nix@tobim.fastmail.fm>
-
@flokli Florian Klink <flokli@flokli.de>