Updated ghostscript packages fix security vulnerabilities
Publication date: 15 Mar 2025Modification date: 15 Mar 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-27830 , CVE-2025-27831 , CVE-2025-27832 , CVE-2025-27833 , CVE-2025-27834 , CVE-2025-27835 , CVE-2025-27836 , CVE-2025-27837
Description
This release addresses CVEs: CVE-2025-27835, CVE-2025-27832,
CVE-2025-27831, CVE-2025-27836, CVE-2025-27830, CVE-2025-27833,
CVE-2025-27837, CVE-2025-27834
The 10.05.0 release deprecates the non-standard operator "selectdevice",
all code should now be using the standard "setpagedevice" operator.
"selectdevice" will be removed in the 10.06.0 release.
We now support production of PDF/X-1a and PDF/X-4a in addition to the
existing support for PDF/X-3
References
- https://bugs.mageia.org/show_bug.cgi?id=34088
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27830
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27831
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27832
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27833
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27834
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27835
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27836
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27837
SRPMS
9/core
- ghostscript-10.05.0-1.mga9