Ghostscript vulnerabilities

Given our Adobe licenses, there may not be a lot of use of ghostscript on campus, but if you're using it anyway, there are a number of vulnerabilities identified yesterday.  See https://www.kb.cert.org/vuls/id/332928 for details.  From the CERT page:

Ghostscript contains multiple -dSAFER sandbox bypass vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary commands on a vulnerable system.

  • ITTC 36
  • (319) 273-5555
  • Service Hub