HCE2-SA-2024-0315 Important HCE 2.0 Security Fix(es): An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp (and oprp) devices can have an arbitrary name for a dynamic library; this library is then loaded. (CVE-2024-33871) An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution. (CVE-2024-46956) An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and possible path traversal and code execution. (CVE-2024-46953) An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. There is an out-of-bounds read when reading color in Indexed color space. (CVE-2024-46955) An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked Implementation pointer in Pattern color space could lead to arbitrary code execution. (CVE-2024-46951) An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream (related to W array values). (CVE-2024-46952) HCE 2.0 ghostscript-9.55.0-6.r11.hce2.aarch64.rpm ghostscript-devel-9.55.0-6.r11.hce2.aarch64.rpm ghostscript-help-9.55.0-6.r11.hce2.noarch.rpm ghostscript-tools-dvipdf-9.55.0-6.r11.hce2.aarch64.rpm ghostscript-9.55.0-6.r11.hce2.x86_64.rpm ghostscript-devel-9.55.0-6.r11.hce2.x86_64.rpm ghostscript-tools-dvipdf-9.55.0-6.r11.hce2.x86_64.rpm