]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d04a2b5) | patch
ghostscript: ignore CVE-2025-27833
authorPeter Marko <peter.marko@siemens.com>
Fri, 25 Apr 2025 16:26:45 +0000 (18:26 +0200)
committerSteve Sakoman <steve@sakoman.com>
Mon, 28 Apr 2025 16:05:58 +0000 (09:05 -0700)
commite1f3d02e80f6bdd942321d9f6718dcc36afe9df8
tree334357f47eaab6734bdcee35a58c3b8793dd85a4tree | snapshot
parentd04a2b5f4899845429e1c5893535f5df1221fcbfcommit | diff
ghostscript: ignore CVE-2025-27833

Vulnerable code was introduced in 9.56.0, so 9.55.0 is not affected yet

Commit introducing vulnerable feature:
* https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/pdf/pdf_fmap.c?id=0a1d08d91a95746f41e8c1d578a4e4af81ee5949
Commit fixing the vulnerability:
* https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=477e36cfa1faa0037069a22eeeb4fc750733f120

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib