CVE-2025-27831
Public on 2025-03-21
Modified on 2025-03-21
Description
Text buffer overflow with long characters; the txt_get_unicode function was copying too few bytes from the fixed glyph name to unicode mapping tables. This was probably causing incorrect Unicode code points in relatively rare cases but not otherwise a problem. However, a badly formed GlyphNames2Unicode array attached to a font could cause the decoding to spill over the assigned buffer.
Patched in ghostpdl-10.05.0
Patched in ghostpdl-10.05.0
Severity
Important
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| Amazon Linux 1 | ghostscript | Not Affected | ||
| Amazon Linux 2 - Core | ghostscript | 2025-03-26 | ALAS2-2025-2805 | Fixed |
| Amazon Linux 2023 | ghostscript | 2025-03-26 | ALAS2023-2025-908 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv3 | 8.4 | CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| NVD | CVSSv3 | 9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |