[Git][security-tracker-team/security-tracker][master] Add two new ghostscript CVEs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Sep 22 13:40:34 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b1e668fa by Salvatore Bonaccorso at 2025-09-22T14:39:20+02:00
Add two new ghostscript CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,9 +15,13 @@ CVE-2025-59800 (In Artifex Ghostscript through 10.05.1, ocr_begin_page in device
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=708602
 	NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=176cf0188a2294bc307b8caec876f39412e58350 (ghostpdl-10.06.0rc1)
 CVE-2025-59799 (Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow  ...)
-	TODO: check
+	- ghostscript <unfixed>
+	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=708517
+	NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781 (ghostpdl-10.06.0rc1)
 CVE-2025-59798 (Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow  ...)
-	TODO: check
+	- ghostscript <unfixed>
+	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=708539
+	NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=0cae41b23a9669e801211dd4cf97b6dadd6dbdd7 (ghostpdl-10.06.0rc1)
 CVE-2025-10789 (A vulnerability was identified in SourceCodester Online Hotel Reservat ...)
 	NOT-FOR-US: SourceCodester
 CVE-2025-10788 (A vulnerability was determined in SourceCodester Online Hotel Reservat ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1e668fadcd3455a0b65451480acb4321232fd9d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1e668fadcd3455a0b65451480acb4321232fd9d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250922/509527f4/attachment.htm>

More information about the debian-security-tracker-commits mailing list