An update for ghostscript is now available for HCE 1.1

HCE1-SA-2024-0070 An update for ghostscript is now available for HCE 1.1 Important HCE 1.1 Security Fix(es): An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp (and oprp) devices can have an arbitrary name for a dynamic library; this library is then loaded. (CVE-2024-33871) HCE 1.1 ghostscript-9.25-8.hce1c.x86_64.rpm libgs-9.25-8.hce1c.x86_64.rpm