[Oraclevm-errata] OVMSA-2018-0285 Important: Oracle VM 3.4 ghostscript security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Thu Dec 6 07:57:26 PST 2018


Oracle VM Security Advisory OVMSA-2018-0285

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
ghostscript-8.70-24.el6_10.2.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/ghostscript-8.70-24.el6_10.2.src.rpm



Description of changes:

[8.70-24.el6_10.2]
- It was found that the fix for CVE-2018-16509 was not complete, the missing
pieces added into ghostscript-CVE-2018-16509.patch

[8.70-24.el6_10.1]
- Resolves: #1641124 - CVE-2018-16509 ghostscript: /invalidaccess bypass 
after failed restore

[8.70-24]
- Added security fix for CVE-2017-8291 (bug #1446063)





More information about the Oraclevm-errata mailing list