The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document. This is related to a lack of an integer overflow check in base/gsalloc.c.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | ghostscript | <Â 9.22~dfsg-1 | ghostscript_9.22~dfsg-1_all.deb |
Debian | 11 | all | ghostscript | <Â 9.22~dfsg-1 | ghostscript_9.22~dfsg-1_all.deb |
Debian | 10 | all | ghostscript | <Â 9.22~dfsg-1 | ghostscript_9.22~dfsg-1_all.deb |
Debian | 999 | all | ghostscript | <Â 9.22~dfsg-1 | ghostscript_9.22~dfsg-1_all.deb |
Debian | 13 | all | ghostscript | <Â 9.22~dfsg-1 | ghostscript_9.22~dfsg-1_all.deb |