CVE-2023-4042

Ghostscript: incomplete fix for cve-2020-16305

Published: 8/23/2023 Last updated: 11/21/2025 Reserved: 8/1/2023

A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	5.5	Medium	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Opam packages affected (1)

conf-ghostscript

Products affected (0)

No product listed.

References (16)

https://access.redhat.com/errata/RHSA-2023:7053
https://access.redhat.com/security/cve/CVE-2023-4042
https://bugzilla.redhat.com/show_bug.cgi?id=1870257
https://bugzilla.redhat.com/show_bug.cgi?id=2228151
https://access.redhat.com/errata/RHSA-2023:7053
https://access.redhat.com/security/cve/CVE-2023-4042
https://bugzilla.redhat.com/show_bug.cgi?id=1870257
https://bugzilla.redhat.com/show_bug.cgi?id=2228151
https://access.redhat.com/errata/RHSA-2023:7053
https://access.redhat.com/security/cve/CVE-2023-4042
https://bugzilla.redhat.com/show_bug.cgi?id=1870257
https://bugzilla.redhat.com/show_bug.cgi?id=2228151
https://access.redhat.com/errata/RHSA-2023:7053
https://access.redhat.com/security/cve/CVE-2023-4042
https://bugzilla.redhat.com/show_bug.cgi?id=1870257
https://bugzilla.redhat.com/show_bug.cgi?id=2228151