Test ID:	1.3.6.1.4.1.25623.1.1.1.1.2023.5578
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-5578-1)
Summary:	The remote host is missing an update for the Debian 'ghostscript' package(s) announced via the DSA-5578-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'ghostscript' package(s) announced via the DSA-5578-1 advisory. Vulnerability Insight: It was discovered that Ghostscript, the GPL PostScript/PDF interpreter, does not properly handle errors in the gdev_prn_open_printer_seekable() function, which could result in the execution of arbitrary commands if malformed document files are processed. For the stable distribution (bookworm), this problem has been fixed in version 10.0.0~ dfsg-11+deb12u3. We recommend that you upgrade your ghostscript packages. For the detailed security status of ghostscript please refer to its security tracker page at: [link moved to references] Affected Software/OS: 'ghostscript' package(s) on Debian 12. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-46751 Debian Security Information: DSA-5578 (Google Search) https://www.debian.org/security/2023/dsa-5578 https://bugs.ghostscript.com/show_bug.cgi?id=707264 https://ghostscript.com/ https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=dcdbc595c13c9d11d235702dff46bb74c80f7698
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.