[ubuntu/hirsute-security] ghostscript 9.53.3~dfsg-7ubuntu0.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Jan 12 12:11:45 UTC 2022
ghostscript (9.53.3~dfsg-7ubuntu0.2) hirsute-security; urgency=medium
* SECURITY UPDATE: use-after-free in sampled_data_sample
- debian/patches/CVE-2021-45944.patch: check stack limits after
function evaluation in psi/zfsample.c.
- CVE-2021-45944
* SECURITY UPDATE: heap-based buffer overflow in sampled_data_finish
- debian/patches/CVE-2021-45949.patch: fix op stack management in
psi/zfsample.c.
- CVE-2021-45949
Date: 2022-01-11 15:26:11.654046+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/ghostscript/9.53.3~dfsg-7ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Hirsute-changes
mailing list