{"id":"RHSA-2023:7053","summary":"Red Hat Security Advisory: ghostscript security and bug fix update","modified":"2026-03-18T10:12:51Z","published":"2024-09-16T12:50:02Z","upstream":["CVE-2023-28879","CVE-2023-38559","CVE-2023-4042"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:7053"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.9_release_notes/index"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184585"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2224367"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2228151"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_7053.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-4042"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-4042"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4042"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870257"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-28879"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-28879"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-28879"},{"type":"ARTICLE","url":"https://artifex.com/news/critical-security-vulnerability-fixed-in-ghostscript"},{"type":"ARTICLE","url":"https://offsec.almond.consulting/ghostscript-cve-2023-28879.html"},{"type":"ARTICLE","url":"https://www.openwall.com/lists/oss-security/2023/04/12/4"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-38559"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-38559"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-38559"},{"type":"ARTICLE","url":"https://bugs.ghostscript.com/show_bug.cgi?id=706897"},{"type":"ARTICLE","url":"https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=d81b82c70bc1"}],"affected":[{"package":{"name":"ghostscript","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-doc","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-gtk-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-gtk-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-tools-dvipdf","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-tools-dvipdf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-tools-fonts","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-tools-fonts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-tools-printing","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-tools-printing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-x11","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-x11"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-x11-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/ghostscript-x11-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"libgs","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libgs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"libgs-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libgs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"libgs-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libgs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-debugsource","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-doc","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-gtk-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-gtk-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-tools-dvipdf","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-tools-dvipdf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-tools-fonts","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-tools-fonts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-tools-printing","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-tools-printing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-x11","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-x11"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"ghostscript-x11-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/ghostscript-x11-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"libgs","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/libgs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"libgs-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/libgs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}},{"package":{"name":"libgs-devel","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/libgs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.27-11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7053.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}