{"id":"USN-7378-1","summary":"ghostscript vulnerabilities","details":"It was discovered that Ghostscript incorrectly serialized DollarBlend in\ncertain fonts. An attacker could use this issue to cause Ghostscript to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. (CVE-2025-27830)\n\nIt was discovered that Ghostscript incorrectly handled the DOCXWRITE\nTXTWRITE device. An attacker could use this issue to cause Ghostscript to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. This issue only affected Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, and\nUbuntu 24.10. (CVE-2025-27831)\n\nIt was discovered that Ghostscript incorrectly handled the NPDL device. An\nattacker could use this issue to cause Ghostscript to crash, resulting in a\ndenial of service, or possibly execute arbitrary code. (CVE-2025-27832)\n\nIt was discovered that Ghostscript incorrectly handled certain long TTF\nfile names. An attacker could use this issue to cause Ghostscript to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. This issue only affected Ubuntu 24.04 LTS and Ubuntu 24.10.\n(CVE-2025-27833)\n\nIt was discovered that Ghostscript incorrectly handled oversized Type 4\nfunctions in certain PDF documents. An attacker could use this issue to\ncause Ghostscript to crash, resulting in a denial of service, or possibly\nexecute arbitrary code. This issue only affected Ubuntu 22.04 LTS, Ubuntu\n24.04 LTS, and Ubuntu 24.10. (CVE-2025-27834)\n\nIt was discovered that Ghostscript incorrectly handled converting certain\nglyphs to Unicode. An attacker could use this issue to cause Ghostscript to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. (CVE-2025-27835)\n\nIt was discovered that Ghostscript incorrectly handled the BJ10V device. An\nattacker could use this issue to cause Ghostscript to crash, resulting in a\ndenial of service, or possibly execute arbitrary code. (CVE-2025-27836)\n","modified":"2026-02-10T04:47:19Z","published":"2025-03-27T12:00:37Z","related":["UBUNTU-CVE-2025-27830","UBUNTU-CVE-2025-27831","UBUNTU-CVE-2025-27832","UBUNTU-CVE-2025-27833","UBUNTU-CVE-2025-27834","UBUNTU-CVE-2025-27835","UBUNTU-CVE-2025-27836"],"upstream":["CVE-2025-27830","CVE-2025-27831","CVE-2025-27832","CVE-2025-27833","CVE-2025-27834","CVE-2025-27835","CVE-2025-27836","UBUNTU-CVE-2025-27830","UBUNTU-CVE-2025-27831","UBUNTU-CVE-2025-27832","UBUNTU-CVE-2025-27833","UBUNTU-CVE-2025-27834","UBUNTU-CVE-2025-27835","UBUNTU-CVE-2025-27836"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7378-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27830"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27831"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27832"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27833"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27834"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27835"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27836"}],"affected":[{"package":{"name":"ghostscript","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/ghostscript@9.50~dfsg-5ubuntu4.15?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.50~dfsg-5ubuntu4.15"}]}],"versions":["9.27~dfsg+0-0ubuntu3","9.27~dfsg+0-0ubuntu4","9.50~dfsg-5ubuntu1","9.50~dfsg-5ubuntu2","9.50~dfsg-5ubuntu3","9.50~dfsg-5ubuntu4","9.50~dfsg-5ubuntu4.1","9.50~dfsg-5ubuntu4.2","9.50~dfsg-5ubuntu4.3","9.50~dfsg-5ubuntu4.4","9.50~dfsg-5ubuntu4.5","9.50~dfsg-5ubuntu4.6","9.50~dfsg-5ubuntu4.7","9.50~dfsg-5ubuntu4.8","9.50~dfsg-5ubuntu4.9","9.50~dfsg-5ubuntu4.10","9.50~dfsg-5ubuntu4.11","9.50~dfsg-5ubuntu4.12","9.50~dfsg-5ubuntu4.13","9.50~dfsg-5ubuntu4.14"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"9.50~dfsg-5ubuntu4.15","binary_name":"ghostscript"},{"binary_version":"9.50~dfsg-5ubuntu4.15","binary_name":"ghostscript-x"},{"binary_version":"9.50~dfsg-5ubuntu4.15","binary_name":"libgs-dev"},{"binary_version":"9.50~dfsg-5ubuntu4.15","binary_name":"libgs9"},{"binary_version":"9.50~dfsg-5ubuntu4.15","binary_name":"libgs9-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7378-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27830"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27832"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27835"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27836"}],"ecosystem":"Ubuntu:20.04:LTS"}}},{"package":{"name":"ghostscript","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/ghostscript@9.55.0~dfsg1-0ubuntu5.11?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.55.0~dfsg1-0ubuntu5.11"}]}],"versions":["9.54.0~dfsg1-0ubuntu2","9.55.0~dfsg1-0ubuntu4","9.55.0~dfsg1-0ubuntu5","9.55.0~dfsg1-0ubuntu5.1","9.55.0~dfsg1-0ubuntu5.2","9.55.0~dfsg1-0ubuntu5.3","9.55.0~dfsg1-0ubuntu5.4","9.55.0~dfsg1-0ubuntu5.5","9.55.0~dfsg1-0ubuntu5.6","9.55.0~dfsg1-0ubuntu5.7","9.55.0~dfsg1-0ubuntu5.9","9.55.0~dfsg1-0ubuntu5.10"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"9.55.0~dfsg1-0ubuntu5.11","binary_name":"ghostscript"},{"binary_version":"9.55.0~dfsg1-0ubuntu5.11","binary_name":"ghostscript-x"},{"binary_version":"9.55.0~dfsg1-0ubuntu5.11","binary_name":"libgs-dev"},{"binary_version":"9.55.0~dfsg1-0ubuntu5.11","binary_name":"libgs9"},{"binary_version":"9.55.0~dfsg1-0ubuntu5.11","binary_name":"libgs9-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7378-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27830"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27831"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27832"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27834"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27835"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27836"}],"ecosystem":"Ubuntu:22.04:LTS"}}},{"package":{"name":"ghostscript","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/ghostscript@10.02.1~dfsg1-0ubuntu7.5?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.02.1~dfsg1-0ubuntu7.5"}]}],"versions":["10.01.2~dfsg1-0ubuntu2","10.01.2~dfsg1-0ubuntu2.1","10.02.1~dfsg1-0ubuntu1","10.02.1~dfsg1-0ubuntu2","10.02.1~dfsg1-0ubuntu5","10.02.1~dfsg1-0ubuntu6","10.02.1~dfsg1-0ubuntu7","10.02.1~dfsg1-0ubuntu7.1","10.02.1~dfsg1-0ubuntu7.3","10.02.1~dfsg1-0ubuntu7.4"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"10.02.1~dfsg1-0ubuntu7.5","binary_name":"ghostscript"},{"binary_version":"10.02.1~dfsg1-0ubuntu7.5","binary_name":"libgs-common"},{"binary_version":"10.02.1~dfsg1-0ubuntu7.5","binary_name":"libgs-dev"},{"binary_version":"10.02.1~dfsg1-0ubuntu7.5","binary_name":"libgs10"},{"binary_version":"10.02.1~dfsg1-0ubuntu7.5","binary_name":"libgs10-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7378-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27830"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27831"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27832"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27833"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27834"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27835"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2025-27836"}],"ecosystem":"Ubuntu:24.04:LTS"}}}],"schema_version":"1.7.3"}