USN-7623-1

Advisory lineage Upstream: 16 Downstream: 0
Published: 08 Jul 2025, 03:48
Last modified:20 May 2026, 16:03

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

08 Jul 2025, 03:48
Published
Vulnerability first disclosed
20 May 2026, 16:03
Last Modified
Vulnerability information updated

Description

ghostscript vulnerabilities It was discovered that OpenJPEG, vendored in Ghostscript did not correctly handle large image files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2023-39327) Thomas Rinsma discovered that Ghostscript did not correctly handle printing certain variables. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2024-29508) It was discovered that Ghostscript did not correctly handle loading certain libraries. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. (CVE-2024-33871) It was discovered that Ghostscript did not correctly handle certain memory operations. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2024-56826, CVE-2024-56827, CVE-2025-27832, CVE-2025-27835, CVE-2025-27836) Vasileios Flengas discovered that Ghostscript did not correctly handle argument sanitization. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, Ubuntu 24.10 and Ubuntu 25.04. (CVE-2025-48708)

Affected Systems

  • ubuntughostscript

    < 9.26~dfsg+0-0ubuntu0.16.04.14+esm9 | < 9.26~dfsg+0-0ubuntu0.18.04.18+esm4 | < 9.50~dfsg-5ubuntu4.15+esm1 | < 9.55.0~dfsg1-0ubuntu5.12 | < 10.02.1~dfsg1-0ubuntu7.7

References (9)