ALAS2023-2023-362

In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be specified on a gs command line (the IJS device inherently must execute a command to start the IJS server). (CVE-2023-43115)

aarch64:
    ghostscript-tools-fonts-9.56.1-7.amzn2023.0.4.aarch64
    libgs-debuginfo-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-tools-printing-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-gtk-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-x11-debuginfo-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-gtk-debuginfo-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-debuginfo-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-tools-dvipdf-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-x11-9.56.1-7.amzn2023.0.4.aarch64
    libgs-devel-9.56.1-7.amzn2023.0.4.aarch64
    libgs-9.56.1-7.amzn2023.0.4.aarch64
    ghostscript-debugsource-9.56.1-7.amzn2023.0.4.aarch64

noarch:
    ghostscript-doc-9.56.1-7.amzn2023.0.4.noarch

src:
    ghostscript-9.56.1-7.amzn2023.0.4.src

x86_64:
    ghostscript-x11-debuginfo-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-gtk-debuginfo-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-tools-printing-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-gtk-9.56.1-7.amzn2023.0.4.x86_64
    libgs-debuginfo-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-debuginfo-9.56.1-7.amzn2023.0.4.x86_64
    libgs-devel-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-tools-dvipdf-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-tools-fonts-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-x11-9.56.1-7.amzn2023.0.4.x86_64
    libgs-9.56.1-7.amzn2023.0.4.x86_64
    ghostscript-debugsource-9.56.1-7.amzn2023.0.4.x86_64