[FFe] Ghostscript 9.24 - Highly recommended by upstream for security
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ghostscript (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
Artifex announced their Ghostscript 9.24 release as follows:
----------
Artifex Software, Inc. is happy to announce the release of
GPL Ghostscript 9.24 and GhostPDL 9.24.
Note that due to some recently discovered security related issues, we
strongly recommend updating installations to 9.24, as soon as possible.
----------
And in the release notes on
https:/
they write:
----------
Security issues have been the primary focus of this release, including solving several (well publicised) real and potential exploits.
PLEASE NOTE: We strongly urge users to upgrade to this latest release to avoid these issues.
----------
I also talked with the Canonical/Ubuntu security team and Steve Beattie writes
----------
Yes, that would be great if we could move ghostscript forward in
cosmic to the 9.24 version. Happy to add the Security Team's support for
this in a FFE bg report, if needed.
----------
Therefore I want to upgrade Cosmic's Ghostscript (currently 9.23) to version 9.24.
Asummary of the changes in the new version you find on
https:/
Details you can see on
https:/
Changed in ghostscript (Ubuntu): | |
status: | Triaged → Fix Committed |
Build log of the new Ghostscript 9.24 package using
pbuilder-dist cosmic ghostscript_ 9.24~dfsg+ 1-0ubuntu1. dsc