CVE-2017-7948

🗓️ 19 Apr 2017 14:00:00Reported by Debian Security Bug TrackerType

debiancve

debiancve🔗 security-tracker.debian.org👁 25 Views

Integer overflow in Ghostscript 9.2

Reporter	Title	Published	Views	Family All 21
CNVD	Artifex Ghostscript mark_curve Denial of Service Vulnerability	26 Apr 201700:00	–	cnvd
CVE	CVE-2017-7948	19 Apr 201714:00	–	cve
Cvelist	CVE-2017-7948	19 Apr 201714:00	–	cvelist
EUVD	EUVD-2017-16919	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 27 Update: ghostscript-9.22-1.fc27	15 Nov 201718:00	–	fedora
Fedora	[SECURITY] Fedora 27 Update: poppler-data-0.4.8-3.fc27	15 Nov 201718:00	–	fedora
Tenable Nessus	Fedora 27 : ghostscript / poppler-data (2017-c9b0c406b3)	15 Jan 201800:00	–	nessus
Tenable Nessus	GLSA-201811-12 : GPL Ghostscript: Multiple vulnerabilities	26 Nov 201800:00	–	nessus
Gentoo Linux	GPL Ghostscript: Multiple vulnerabilities	24 Nov 201800:00	–	gentoo
Mageia	Updated ghostscript packages fix security vulnerabilities	29 Nov 201718:52	–	mageia

OS	OS Version	Architecture	Package	Package Version	Filename
Debian	11	any	ghostscript	9.22~dfsg-1	ghostscript_9.22~dfsg-1_any.deb
Debian	12	any	ghostscript	9.22~dfsg-1	ghostscript_9.22~dfsg-1_any.deb
Debian	13	any	ghostscript	9.22~dfsg-1	ghostscript_9.22~dfsg-1_any.deb
Debian	14	any	ghostscript	9.22~dfsg-1	ghostscript_9.22~dfsg-1_any.deb
Debian	999	any	ghostscript	9.22~dfsg-1	ghostscript_9.22~dfsg-1_any.deb

19 Apr 2017 14:00Current

8.2High risk

Vulners AI Score8.2

CVSS 26.8

CVSS 37.8

EPSS0.0162

integer overflow ghostscript denial of service out-of-bounds write application crash postscript document