#18194 closed enhancement (fixed)
ghostscript-10.01.2
| Reported by: | Bruce Dubbs | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | elevated | Milestone: | 12.0 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
New point version.
Change History (7)
comment:1 by , 22 months ago
comment:2 by , 21 months ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:3 by , 21 months ago
Upstream seems to recommend looking at the git log for point releases, so I think those are the only notes we're going to get
comment:4 by , 21 months ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
comment:5 by , 21 months ago
| Priority: | normal → elevated |
|---|
From a post I saw on Sophos' website, it appears that CVE-2023-36664 was fixed in this version but not announced anywhere. It's another arbitrary code execution vulnerability that gets triggered by crafted PS documents.
Note:
See TracTickets
for help on using tickets.
I couldn't find the release note. A list of changes is available at https://github.com/ArtifexSoftware/ghostpdl/compare/ghostpdl-10.01.1...ghostpdl-10.01.2.