Search for packages
Package details: pkg:alpm/archlinux/ghostscript@9.27-1
purl pkg:alpm/archlinux/ghostscript@9.27-1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-21fq-z3n5-e3ez It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. CVE-2019-3838
VCID-adj9-tka4-r7e4 It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. CVE-2019-3835

Date Actor Action Vulnerability Source VulnerableCode Version
2025-07-31T11:36:58.384002+00:00 Arch Linux Importer Fixing VCID-adj9-tka4-r7e4 https://security.archlinux.org/AVG-929 37.0.0
2025-07-31T11:36:58.356955+00:00 Arch Linux Importer Fixing VCID-21fq-z3n5-e3ez https://security.archlinux.org/AVG-929 37.0.0