Skip to content
GitLab

Update ghostscript in Windows installer due to vulnerability CVE-2023-36664

Environment/Versions

  • GIMP version: all
  • Package:
  • Operating System: Windows

There is a vulnerability in all releases of ghostscript before 10.01.2. As ghostscript is part of GIMP in Windows, the actual version 9.53.3 has to be patched.

Description of the bug

See CVE-2023-36664

Reproduction

Is the bug reproducible? https://www.kroll.com/en/insights/publications/cyber/ghostscript-cve-2023-36664-remote-code-execution-vulnerability

Expected result:

Actual result:

Additional information

If you have a backtrace for a crash or a warning, paste it here.