Hi Cody,
Thanks for asking. Have forwarded to the TDF security folks.
But off hand, LibreOffice does not build or install the ghostscript
package. It just consumes it in several calls.
Users/sysadmins need only update their install of ghostscript from
distro repo or from Artifex and ghostscript directly. The 10.01.2 build
looks to have been patched.
https://ghostscript.com/releases/gsdnld.html
Stuart
-------- Original Message --------
Subject: [libreoffice-users] CVE-2023-36664 - GhostScript Vulnerability
Date: 2023-07-17 13:01
From: "Gregg, Cody" <[email protected]>
To: "[email protected]" <[email protected]>
Good Afternoon
Regarding CVE-2023-36664 can you tell me which versions of LibreOffice
this effects and if you plan on releasing a patch to fix this
vulnerability?
Best Regards,
Cody Gregg
IT Systems Analyst
Life Care Centers of America
3001 Keith St NW
Cleveland, TN 37312
[email protected]<mailto:[email protected]>
Extension: 5826 | Direct: 423.473.5826
--
V Stuart Foote
--
To unsubscribe e-mail to: [email protected]
Problems? https://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
Posting guidelines + more: https://wiki.documentfoundation.org/Netiquette
List archive: https://listarchives.libreoffice.org/global/users/
Privacy Policy: https://www.documentfoundation.org/privacy
