OPENSUSE-SU-2026:20592-1 - Vulnerability-Lookup

OPENSUSE-SU-2026:20592-1

Vulnerability from csaf_opensuse - Published: 2026-04-21 09:49 - Updated: 2026-04-21 09:49

Summary

Security update for ghostscript

Severity

Moderate

Notes

Title of the patch: Security update for ghostscript

Description of the patch: This update for ghostscript fixes the following issues: Update to version 10.06.0. Security issues fixed: - CVE-2025-59800: an integer overflow can lead to a heap-based buffer overflow in ocr_line8 (bsc#1250355). - CVE-2025-59799: a large size value can cause a stack-based buffer overflow in pdfmark_coerce_dest (bsc#1250354). - CVE-2025-59798: stack-based buffer overflow in pdf_write_cmap can lead to a denial-of-service (bsc#1250353). - CVE-2025-48708: lacks of argument sanitization may lead to password disclosure (bsc#1243701). - CVE-2025-46646: mishandling of overlong utf-8 encoding in artifex ghostscript's decode_utf8 function (bsc#1257699). Other updates and bugfixes: - switch over to libalternatives for ghostscript to provide a gs variant (bsc#1245896) - Version upgrade to 10.06.0: * removes the non-standard operator "selectdevice" (cf. the entry below dated Tue Apr 1 09:56:06 UTC 2025) - Version upgrade to 10.05.1: * an overflow issue in Freetype on platforms where long is a 4 byte (rather than 8 byte) type (Microsoft Windows, for example) causing corrupted glyph rendering at higher resolutions * an issue with embedded files, affecting Zugferd format PDF creation. * broken logic in PDF Optional Content processing * potential slow down due to searching for identifiable font files * a small number of extreme edge case segmentation faults.

Patchnames: openSUSE-Leap-16.0-602

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2025-46646

2.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2025-48708

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2025-59798

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2025-59799

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2025-59800

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2025-59801

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

References

URL

Category

	https://www.suse.com/support/security/rating/	external
	https://ftp.suse.com/pub/projects/security/csaf/o…	self
	https://bugzilla.suse.com/1243701	self
	https://bugzilla.suse.com/1245896	self
	https://bugzilla.suse.com/1250353	self
	https://bugzilla.suse.com/1250354	self
	https://bugzilla.suse.com/1250355	self
	https://bugzilla.suse.com/1257699	self
	https://www.suse.com/security/cve/CVE-2025-46646/	self
	https://www.suse.com/security/cve/CVE-2025-48708/	self
	https://www.suse.com/security/cve/CVE-2025-59798/	self
	https://www.suse.com/security/cve/CVE-2025-59799/	self
	https://www.suse.com/security/cve/CVE-2025-59800/	self
	https://www.suse.com/security/cve/CVE-2025-59801/	self
	https://www.suse.com/security/cve/CVE-2025-46646	external
	https://bugzilla.suse.com/1257699	external
	https://www.suse.com/security/cve/CVE-2025-48708	external
	https://bugzilla.suse.com/1243701	external
	https://www.suse.com/security/cve/CVE-2025-59798	external
	https://bugzilla.suse.com/1250353	external
	https://www.suse.com/security/cve/CVE-2025-59799	external
	https://bugzilla.suse.com/1250354	external
	https://www.suse.com/security/cve/CVE-2025-59800	external
	https://bugzilla.suse.com/1250355	external
	https://www.suse.com/security/cve/CVE-2025-59801	external

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for ghostscript",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for ghostscript fixes the following issues:\n\nUpdate to version 10.06.0.\n\nSecurity issues fixed:\n\n- CVE-2025-59800: an integer overflow can lead to a heap-based buffer overflow in ocr_line8 (bsc#1250355).\n- CVE-2025-59799: a large size value can cause a stack-based buffer overflow in pdfmark_coerce_dest (bsc#1250354).\n- CVE-2025-59798: stack-based buffer overflow in pdf_write_cmap can lead to a denial-of-service (bsc#1250353).\n- CVE-2025-48708: lacks of argument sanitization may lead to password disclosure (bsc#1243701).\n- CVE-2025-46646: mishandling of overlong utf-8 encoding in artifex ghostscript\u0027s decode_utf8 function (bsc#1257699).\n\nOther updates and bugfixes:\n\n- switch over to libalternatives for ghostscript to provide a gs\n  variant (bsc#1245896)\n\n- Version upgrade to 10.06.0:\n\n  * removes the non-standard operator \"selectdevice\"\n    (cf. the entry below dated Tue Apr  1 09:56:06 UTC 2025)\n\n- Version upgrade to 10.05.1:\n\n  * an overflow issue in Freetype on platforms\n      where long is a 4 byte (rather than 8 byte) type\n      (Microsoft Windows, for example) causing corrupted\n      glyph rendering at higher resolutions\n  * an issue with embedded files, affecting Zugferd\n      format PDF creation.\n  * broken logic in PDF Optional Content processing\n  * potential slow down due to searching for identifiable\n      font files\n  * a small number of extreme edge case segmentation faults.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Leap-16.0-602",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20592-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1243701",
        "url": "https://bugzilla.suse.com/1243701"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1245896",
        "url": "https://bugzilla.suse.com/1245896"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1250353",
        "url": "https://bugzilla.suse.com/1250353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1250354",
        "url": "https://bugzilla.suse.com/1250354"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1250355",
        "url": "https://bugzilla.suse.com/1250355"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1257699",
        "url": "https://bugzilla.suse.com/1257699"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-46646 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-46646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-48708 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-48708/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-59798 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-59798/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-59799 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-59799/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-59800 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-59800/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-59801 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-59801/"
      }
    ],
    "title": "Security update for ghostscript",
    "tracking": {
      "current_release_date": "2026-04-21T09:49:39Z",
      "generator": {
        "date": "2026-04-21T09:49:39Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2026:20592-1",
      "initial_release_date": "2026-04-21T09:49:39Z",
      "revision_history": [
        {
          "date": "2026-04-21T09:49:39Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ghostscript-10.06.0-160000.1.1.aarch64",
                "product": {
                  "name": "ghostscript-10.06.0-160000.1.1.aarch64",
                  "product_id": "ghostscript-10.06.0-160000.1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-devel-10.06.0-160000.1.1.aarch64",
                "product": {
                  "name": "ghostscript-devel-10.06.0-160000.1.1.aarch64",
                  "product_id": "ghostscript-devel-10.06.0-160000.1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-x11-10.06.0-160000.1.1.aarch64",
                "product": {
                  "name": "ghostscript-x11-10.06.0-160000.1.1.aarch64",
                  "product_id": "ghostscript-x11-10.06.0-160000.1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ghostscript-10.06.0-160000.1.1.ppc64le",
                "product": {
                  "name": "ghostscript-10.06.0-160000.1.1.ppc64le",
                  "product_id": "ghostscript-10.06.0-160000.1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-devel-10.06.0-160000.1.1.ppc64le",
                "product": {
                  "name": "ghostscript-devel-10.06.0-160000.1.1.ppc64le",
                  "product_id": "ghostscript-devel-10.06.0-160000.1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-x11-10.06.0-160000.1.1.ppc64le",
                "product": {
                  "name": "ghostscript-x11-10.06.0-160000.1.1.ppc64le",
                  "product_id": "ghostscript-x11-10.06.0-160000.1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ghostscript-10.06.0-160000.1.1.s390x",
                "product": {
                  "name": "ghostscript-10.06.0-160000.1.1.s390x",
                  "product_id": "ghostscript-10.06.0-160000.1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-devel-10.06.0-160000.1.1.s390x",
                "product": {
                  "name": "ghostscript-devel-10.06.0-160000.1.1.s390x",
                  "product_id": "ghostscript-devel-10.06.0-160000.1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-x11-10.06.0-160000.1.1.s390x",
                "product": {
                  "name": "ghostscript-x11-10.06.0-160000.1.1.s390x",
                  "product_id": "ghostscript-x11-10.06.0-160000.1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ghostscript-10.06.0-160000.1.1.x86_64",
                "product": {
                  "name": "ghostscript-10.06.0-160000.1.1.x86_64",
                  "product_id": "ghostscript-10.06.0-160000.1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-devel-10.06.0-160000.1.1.x86_64",
                "product": {
                  "name": "ghostscript-devel-10.06.0-160000.1.1.x86_64",
                  "product_id": "ghostscript-devel-10.06.0-160000.1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ghostscript-x11-10.06.0-160000.1.1.x86_64",
                "product": {
                  "name": "ghostscript-x11-10.06.0-160000.1.1.x86_64",
                  "product_id": "ghostscript-x11-10.06.0-160000.1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 16.0",
                "product": {
                  "name": "openSUSE Leap 16.0",
                  "product_id": "openSUSE Leap 16.0"
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-10.06.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64"
        },
        "product_reference": "ghostscript-10.06.0-160000.1.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-10.06.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le"
        },
        "product_reference": "ghostscript-10.06.0-160000.1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-10.06.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x"
        },
        "product_reference": "ghostscript-10.06.0-160000.1.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-10.06.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64"
        },
        "product_reference": "ghostscript-10.06.0-160000.1.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-devel-10.06.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64"
        },
        "product_reference": "ghostscript-devel-10.06.0-160000.1.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-devel-10.06.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le"
        },
        "product_reference": "ghostscript-devel-10.06.0-160000.1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-devel-10.06.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x"
        },
        "product_reference": "ghostscript-devel-10.06.0-160000.1.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-devel-10.06.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64"
        },
        "product_reference": "ghostscript-devel-10.06.0-160000.1.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-x11-10.06.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64"
        },
        "product_reference": "ghostscript-x11-10.06.0-160000.1.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-x11-10.06.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le"
        },
        "product_reference": "ghostscript-x11-10.06.0-160000.1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-x11-10.06.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x"
        },
        "product_reference": "ghostscript-x11-10.06.0-160000.1.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ghostscript-x11-10.06.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        },
        "product_reference": "ghostscript-x11-10.06.0-160000.1.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-46646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-46646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8 encoding. NOTE: this issue exists because of an incomplete fix for CVE-2024-46954.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-46646",
          "url": "https://www.suse.com/security/cve/CVE-2025-46646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1257699 for CVE-2025-46646",
          "url": "https://bugzilla.suse.com/1257699"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-04-21T09:49:39Z",
          "details": "low"
        }
      ],
      "title": "CVE-2025-46646"
    },
    {
      "cve": "CVE-2025-48708",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-48708"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript before 10.05.1 lacks argument sanitization for the # case. A created PDF document includes its password in cleartext.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-48708",
          "url": "https://www.suse.com/security/cve/CVE-2025-48708"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1243701 for CVE-2025-48708",
          "url": "https://bugzilla.suse.com/1243701"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-04-21T09:49:39Z",
          "details": "low"
        }
      ],
      "title": "CVE-2025-48708"
    },
    {
      "cve": "CVE-2025-59798",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-59798"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdf_write_cmap in devices/vector/gdevpdtw.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-59798",
          "url": "https://www.suse.com/security/cve/CVE-2025-59798"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1250353 for CVE-2025-59798",
          "url": "https://bugzilla.suse.com/1250353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-04-21T09:49:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-59798"
    },
    {
      "cve": "CVE-2025-59799",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-59799"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfmark_coerce_dest in devices/vector/gdevpdfm.c via a large size value.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-59799",
          "url": "https://www.suse.com/security/cve/CVE-2025-59799"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1250354 for CVE-2025-59799",
          "url": "https://bugzilla.suse.com/1250354"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-04-21T09:49:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-59799"
    },
    {
      "cve": "CVE-2025-59800",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-59800"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer overflow that leads to a heap-based buffer overflow in ocr_line8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-59800",
          "url": "https://www.suse.com/security/cve/CVE-2025-59800"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1250355 for CVE-2025-59800",
          "url": "https://bugzilla.suse.com/1250355"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-04-21T09:49:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-59800"
    },
    {
      "cve": "CVE-2025-59801",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-59801"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
          "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-59801",
          "url": "https://www.suse.com/security/cve/CVE-2025-59801"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-devel-10.06.0-160000.1.1.x86_64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.aarch64",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.ppc64le",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.s390x",
            "openSUSE Leap 16.0:ghostscript-x11-10.06.0-160000.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-04-21T09:49:39Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-59801"
    }
  ]
}

CVE-2025-48708 (GCVE-0-2025-48708)

Vulnerability from cvelistv5 – Published: 2025-05-23 00:00 – Updated: 2025-05-24 00:11

Summary

gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript before 10.05.1 lacks argument sanitization for the # case. A created PDF document includes its password in cleartext.

Severity ?

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE

CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer

Assigner

mitre

References

URL

Tags

	https://bugs.ghostscript.com/show_bug.cgi?id=708446
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/gho…

Impacted products

	Vendor	Product	Version
	Artifex	Ghostscript	Affected: 0 , < 10.05.1 (custom)

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-48708",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-23T13:21:22.077960Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-23T13:21:34.502Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-05-24T00:11:29.484Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://www.openwall.com/lists/oss-security/2025/05/23/2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Ghostscript",
          "vendor": "Artifex",
          "versions": [
            {
              "lessThan": "10.05.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.05.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript before 10.05.1 lacks argument sanitization for the # case. A created PDF document includes its password in cleartext."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-212",
              "description": "CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-23T14:20:13.175Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708446"
        },
        {
          "url": "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=b587663c623b4462f9e78686a31fd880207303ee"
        }
      ],
      "x_generator": {
        "engine": "enrichogram 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-48708",
    "datePublished": "2025-05-23T00:00:00.000Z",
    "dateReserved": "2025-05-23T00:00:00.000Z",
    "dateUpdated": "2025-05-24T00:11:29.484Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-59800 (GCVE-0-2025-59800)

Vulnerability from cvelistv5 – Published: 2025-09-22 00:00 – Updated: 2025-09-23 13:52

Summary

In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer overflow that leads to a heap-based buffer overflow in ocr_line8.

Severity ?

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE

CWE-190 - Integer Overflow or Wraparound

Assigner

mitre

References

URL

Tags

	https://bugs.ghostscript.com/show_bug.cgi?id=708602
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/gho…

Impacted products

	Vendor	Product	Version
	Artifex	Ghostscript	Affected: 0 , ≤ 10.05.1 (custom)

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-59800",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-09-23T13:52:31.404135Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-09-23T13:52:36.379Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708602"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Ghostscript",
          "vendor": "Artifex",
          "versions": [
            {
              "lessThanOrEqual": "10.05.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*",
                  "versionEndIncluding": "10.05.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer overflow that leads to a heap-based buffer overflow in ocr_line8."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-190",
              "description": "CWE-190 Integer Overflow or Wraparound",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-22T03:13:45.893Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708602"
        },
        {
          "url": "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=176cf0188a2294bc307b8caec876f39412e58350"
        }
      ],
      "x_generator": {
        "engine": "enrichogram 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-59800",
    "datePublished": "2025-09-22T00:00:00.000Z",
    "dateReserved": "2025-09-22T00:00:00.000Z",
    "dateUpdated": "2025-09-23T13:52:36.379Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-59801 (GCVE-0-2025-59801)

Vulnerability from cvelistv5 – Published: 2025-09-22 00:00 – Updated: 2025-09-23 13:53

Summary

In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.

Severity ?

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE

CWE-121 - Stack-based Buffer Overflow

Assigner

mitre

References

URL

Tags

	https://bugs.ghostscript.com/show_bug.cgi?id=708819
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/gho…

Impacted products

	Vendor	Product	Version
	Artifex	GhostXPS	Affected: 0 , < 10.06.0 (custom)

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-59801",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-09-23T13:53:38.177425Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-09-23T13:53:45.701Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "GhostXPS",
          "vendor": "Artifex",
          "versions": [
            {
              "lessThan": "10.06.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-121",
              "description": "CWE-121 Stack-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-22T03:11:41.392Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708819"
        },
        {
          "url": "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=99727069197d548a8db69ba5d63f766bff40eaab"
        }
      ],
      "x_generator": {
        "engine": "enrichogram 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-59801",
    "datePublished": "2025-09-22T00:00:00.000Z",
    "dateReserved": "2025-09-22T00:00:00.000Z",
    "dateUpdated": "2025-09-23T13:53:45.701Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-46646 (GCVE-0-2025-46646)

Vulnerability from cvelistv5 – Published: 2025-04-26 00:00 – Updated: 2025-04-29 15:23

Summary

In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8 encoding. NOTE: this issue exists because of an incomplete fix for CVE-2024-46954.

Severity ?

4.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE

CWE-24 - Path Traversal: '../filedir'

Assigner

mitre

References

URL

Tags

	https://bugs.ghostscript.com/show_bug.cgi?id=708311
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/gho…

Impacted products

	Vendor	Product	Version
	Artifex	Ghostscript	Affected: 0 , < 10.05.0 (custom)

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-46646",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-29T13:44:40.556076Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-29T15:23:02.330Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Ghostscript",
          "vendor": "Artifex",
          "versions": [
            {
              "lessThan": "10.05.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.05.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8 encoding. NOTE: this issue exists because of an incomplete fix for CVE-2024-46954."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 4.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-24",
              "description": "CWE-24 Path Traversal: \u0027../filedir\u0027",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-26T14:33:54.235Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708311"
        },
        {
          "url": "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f14ea81e6c3d2f51593f23cdf13c4679a18f1a3f"
        }
      ],
      "x_generator": {
        "engine": "enrichogram 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-46646",
    "datePublished": "2025-04-26T00:00:00.000Z",
    "dateReserved": "2025-04-26T00:00:00.000Z",
    "dateUpdated": "2025-04-29T15:23:02.330Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-59799 (GCVE-0-2025-59799)

Vulnerability from cvelistv5 – Published: 2025-09-22 00:00 – Updated: 2025-11-03 17:45

Summary

Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfmark_coerce_dest in devices/vector/gdevpdfm.c via a large size value.

Severity ?

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE

CWE-121 - Stack-based Buffer Overflow

Assigner

mitre

References

URL

Tags

	https://bugs.ghostscript.com/show_bug.cgi?id=708517
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/gho…

Impacted products

	Vendor	Product	Version
	Artifex	Ghostscript	Affected: 0 , ≤ 10.05.1 (custom)

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-59799",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-09-23T13:48:50.543754Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-09-23T13:48:53.764Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708517"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T17:45:21.821Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Ghostscript",
          "vendor": "Artifex",
          "versions": [
            {
              "lessThanOrEqual": "10.05.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*",
                  "versionEndIncluding": "10.05.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfmark_coerce_dest in devices/vector/gdevpdfm.c via a large size value."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-121",
              "description": "CWE-121 Stack-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-22T03:15:40.170Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708517"
        },
        {
          "url": "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781"
        }
      ],
      "x_generator": {
        "engine": "enrichogram 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-59799",
    "datePublished": "2025-09-22T00:00:00.000Z",
    "dateReserved": "2025-09-22T00:00:00.000Z",
    "dateUpdated": "2025-11-03T17:45:21.821Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-59798 (GCVE-0-2025-59798)

Vulnerability from cvelistv5 – Published: 2025-09-22 00:00 – Updated: 2025-11-03 17:45

Summary

Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdf_write_cmap in devices/vector/gdevpdtw.c.

Severity ?

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE

CWE-121 - Stack-based Buffer Overflow

Assigner

mitre

References

URL

Tags

	https://bugs.ghostscript.com/show_bug.cgi?id=708539
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/gho…

Impacted products

	Vendor	Product	Version
	Artifex	Ghostscript	Affected: 0 , ≤ 10.05.1 (custom)

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-59798",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-09-23T13:54:24.175934Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-09-23T13:54:26.803Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708539"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T17:45:20.873Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Ghostscript",
          "vendor": "Artifex",
          "versions": [
            {
              "lessThanOrEqual": "10.05.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*",
                  "versionEndIncluding": "10.05.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdf_write_cmap in devices/vector/gdevpdtw.c."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-121",
              "description": "CWE-121 Stack-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-22T03:17:16.835Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=708539"
        },
        {
          "url": "https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=0cae41b23a9669e801211dd4cf97b6dadd6dbdd7"
        }
      ],
      "x_generator": {
        "engine": "enrichogram 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-59798",
    "datePublished": "2025-09-22T00:00:00.000Z",
    "dateReserved": "2025-09-22T00:00:00.000Z",
    "dateUpdated": "2025-11-03T17:45:20.873Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.