ALAS2023-2025-927

Amazon Linux 2023 Security Advisory: ALAS2023-2025-927
Advisory Released Date: 2025-04-14
Advisory Updated Date: 2025-04-14

Severity: Important

References: CVE-2025-27834 CVE-2025-27835 CVE-2025-27836 CVE-2025-27837
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

PDF interpreter - Guard against unsigned int overflow. A large Type 4 function definition can overflow the uint counter, causing the allocated buffer to be smaller than required.

Info: https://bugs.ghostscript.com/show_bug.cgi?id=708253
Patch: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=ef42ff180a04926e187d40faea40d4a43e304e3b (ghostpdl-10.05.0) (CVE-2025-27834)

Fix confusion between bytes and shorts. Data is being copied from a string in multiple of shorts, rather than multiple of bytes, leading to both a read (probably benign, given the memory manager) and write buffer overflow.

Info: https://bugs.ghostscript.com/show_bug.cgi?id=708131
Patch: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=de900010a6f2310d1fd54e99eeba466693da0e13 (ghostpdl-10.05.0) (CVE-2025-27835)

Potential print buffer overflow. Fixed in ghostpdl-10.05.0 by implementing stricter buffer length validation.

Info: https://bugs.ghostscript.com/show_bug.cgi?id=708192
Patch: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=8b6d19b2b4079da6863ef25f2370f25d4b054919 (ghostpdl-10.05.0) (CVE-2025-27836)

Patch to error check UTF-8 conversions. Fixed in ghostpdl-10.05.0 by adding a check on the value returned by the gp_utf8_to_uint16 function.

Info: https://bugs.ghostscript.com/show_bug.cgi?id=708238
Patch: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=dbb9f2b11f820697e77863523a8d835ab040e5d1 (ghostpdl-10.05.0) (CVE-2025-27837)

Affected Packages:

ghostscript

Issue Correction:
Run dnf update ghostscript --releasever 2023.7.20250414 to update your system.

New Packages:

aarch64:
    ghostscript-x11-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-tools-dvipdf-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-tools-fonts-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-x11-debuginfo-9.56.1-7.amzn2023.0.16.aarch64
    libgs-devel-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-debuginfo-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-gtk-debuginfo-9.56.1-7.amzn2023.0.16.aarch64
    libgs-debuginfo-9.56.1-7.amzn2023.0.16.aarch64
    libgs-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-tools-printing-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-gtk-9.56.1-7.amzn2023.0.16.aarch64
    ghostscript-debugsource-9.56.1-7.amzn2023.0.16.aarch64

noarch:
    ghostscript-doc-9.56.1-7.amzn2023.0.16.noarch

src:
    ghostscript-9.56.1-7.amzn2023.0.16.src

x86_64:
    libgs-devel-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-gtk-debuginfo-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-gtk-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-tools-fonts-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-tools-dvipdf-9.56.1-7.amzn2023.0.16.x86_64
    libgs-debuginfo-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-debuginfo-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-x11-debuginfo-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-x11-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-tools-printing-9.56.1-7.amzn2023.0.16.x86_64
    libgs-9.56.1-7.amzn2023.0.16.x86_64
    ghostscript-debugsource-9.56.1-7.amzn2023.0.16.x86_64

Additional References

Release Notes: Amazon Linux 2023 Release Notes

Red Hat: CVE-2025-27834, CVE-2025-27835, CVE-2025-27836, CVE-2025-27837

Mitre: CVE-2025-27834, CVE-2025-27835, CVE-2025-27836, CVE-2025-27837