-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 10 Nov 2024 13:20:08 +0100
Source: ghostscript
Architecture: source
Version: 10.0.0~dfsg-11+deb12u6
Distribution: bookworm-security
Urgency: high
Maintainer: Debian QA Group <packages@qa.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Changes:
 ghostscript (10.0.0~dfsg-11+deb12u6) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Check for overflow validating format string (CVE-2024-46953)
   * Fix filenameforall completion cleanup
   * Don't leave a dangling pointer on the stack
   * PostScript interpreter - Null dangling references on stack
   * PostScript interpreter - fix buffer length check (CVE-2024-46956)
   * PS interpreter review colour code for stack pointers
   * PS interpreter - check Indexed colour space index (CVE-2024-46955)
   * PS interpreter - check the type of the Pattern Implementation
     (CVE-2024-46951)
   * PDF interpreter - sanitise W array values in Xref streams (CVE-2024-46952)
Checksums-Sha1:
 ca1381ce12040f291aa77e5b6b1967aff55e5a39 3021 ghostscript_10.0.0~dfsg-11+deb12u6.dsc
 5f5adb88612553f4b9dee3606265aba70802b4f0 103152 ghostscript_10.0.0~dfsg-11+deb12u6.debian.tar.xz
 3fde2e1f374a58962e6a250b7b253622581a67a4 7320 ghostscript_10.0.0~dfsg-11+deb12u6_source.buildinfo
Checksums-Sha256:
 5d41cc89cfde3a53d968d4ea0bc905a749527eef1f994174e99659a790f2fd3a 3021 ghostscript_10.0.0~dfsg-11+deb12u6.dsc
 2b62a7ed32612ec854feac1cebb639e7f169231307b4e78d6d16d0f3d6e5c692 103152 ghostscript_10.0.0~dfsg-11+deb12u6.debian.tar.xz
 191d966ed79e85d1221a2729040dc8666ff1f66be4f3df9bd6c62d1066ccbec5 7320 ghostscript_10.0.0~dfsg-11+deb12u6_source.buildinfo
Files:
 631bb1c9a4b0b597f758eb9b87b81301 3021 text optional ghostscript_10.0.0~dfsg-11+deb12u6.dsc
 5aafaef0b4a10d27054c5d5cc1442ea2 103152 text optional ghostscript_10.0.0~dfsg-11+deb12u6.debian.tar.xz
 4b713da2b1ee55b2f64d3dc5b42addbf 7320 text optional ghostscript_10.0.0~dfsg-11+deb12u6_source.buildinfo
-----BEGIN PGP SIGNATURE-----
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=N14W
-----END PGP SIGNATURE-----