The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5692 advisory.

    - -------------------------------------------------------------------------     Debian Security Advisory DSA-5692-1                   security@debian.org     https://www.debian.org/security/                     Salvatore Bonaccorso     May 15, 2024                          https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package        : ghostscript     CVE ID         : CVE-2023-52722 CVE-2024-29510 CVE-2024-33869 CVE-2024-33870                      CVE-2024-33871

    Multiple security issues were discovered in Ghostscript, the GPL     PostScript/PDF interpreter, which could result in denial of service and     potentially the execution of arbitrary code if malformed document files     are processed.

    For the oldstable distribution (bullseye), these problems have been fixed     in version 9.53.3~dfsg-7+deb11u7.

    For the stable distribution (bookworm), these problems have been fixed in     version 10.0.0~dfsg-11+deb12u4.

    We recommend that you upgrade your ghostscript packages.

    For the detailed security status of ghostscript please refer to its     security tracker page at:
    https://security-tracker.debian.org/tracker/ghostscript

    Further information about Debian Security Advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Debian dsa-5692 : ghostscript - security update

high Nessus Plugin ID 197169

Version 1.6