Lucene search
Alpine Linux Development TeamALPINE:CVE-2019-14812HistoryNov 27, 2019 - 2:15 p.m.
CVE-2019-14812
2019-11-2714:15:00
Alpine Linux Development Team
security.alpinelinux.org
13
0.002 Low
EPSS
Percentile
52.1%
A flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass -dSAFER restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.10-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.11-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.12-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.13-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.14-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.15-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.16-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.17-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
| Alpine | 3.18-main | noarch | ghostscript | <Â 9.27-r3 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2019-14812
2019-08-28 00:00:00
prion
prion
Command injection
2019-11-27 14:15:00
debiancve
debiancve
CVE-2019-14812
2019-11-27 14:15:00
veracode
veracode
Safer Restriction Bypass
2019-09-03 00:20:38
symantec
symantec
Artifex Ghostscript CVE-2019-14812 Remote Privilege Escalation Vulnerability
2019-08-20 00:00:00
osv
osv
CVE-2019-14812
2019-11-27 14:15:11
ghostscript - security update
2019-09-07 00:00:00
ghostscript - security update
2019-09-09 00:00:00
cve
cve
CVE-2019-14812
2019-11-27 14:15:00
cvelist
cvelist
CVE-2019-14812
2019-11-27 13:50:15
redhatcve
redhatcve
CVE-2019-14812
2019-10-10 23:45:32
nessus
nessus
Oracle Linux 8 : ghostscript (ELSA-2019-2591)
2019-09-09 00:00:00
FreeBSD : Ghostscript -- Security bypass vulnerabilities (22ae307a-1ac4-11ea-b267-001cc0382b2f)
2019-12-10 00:00:00
EulerOS 2.0 SP3 : ghostscript (EulerOS-SA-2019-2242)
2019-11-08 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4518-1)
2019-09-10 00:00:00
Mageia: Security Advisory (MGASA-2019-0271)
2022-01-28 00:00:00
CentOS Update for ghostscript CESA-2019:2586 centos7
2019-09-19 00:00:00
oraclelinux
oraclelinux
ghostscript security update
2019-09-06 00:00:00
ghostscript security update
2019-09-02 00:00:00
debian
debian
[SECURITY] [DSA 4518-1] ghostscript security update
2019-09-07 15:42:39
[SECURITY] [DSA 4518-1] ghostscript security update
2019-09-07 15:42:56
[SECURITY] [DLA 1915-1] ghostscript security update
2019-09-09 12:09:00
mageia
mageia
Updated ghostscript packages fix security vulnerabilities
2019-09-12 22:09:52
centos
centos
ghostscript, libgs security update
2019-09-18 18:44:20
redhat
redhat
(RHSA-2019:2591) Important: ghostscript security update
2019-09-02 07:36:36
(RHSA-2019:2586) Important: ghostscript security update
2019-09-02 07:04:45
ubuntu
ubuntu
Ghostscript vulnerabilities
2019-08-29 00:00:00
archlinux
archlinux
[ASA-201911-5] ghostscript: sandbox escape
2019-11-03 00:00:00
freebsd
freebsd
Ghostscript -- Security bypass vulnerabilities
2019-08-20 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: ghostscript-9.27-1.fc31
2019-09-22 01:23:29
[SECURITY] Fedora 30 Update: ghostscript-9.27-2.fc30
2019-11-18 01:19:29
[SECURITY] Fedora 30 Update: ghostscript-9.27-1.fc30
2019-09-25 01:09:18
suse
suse
Security update for ghostscript (important)
2019-09-30 00:00:00
Security update for ghostscript (important)
2019-09-30 00:00:00
gentoo
gentoo
GPL Ghostscript: Multiple vulnerabilities
2020-04-01 00:00:00
amazon
amazon
Important: ghostscript
2021-02-17 00:58:00