MiracleLinux 3 : ghostscript-8.70-6.6.0.1.AXS3 (AXSA:2012-97:01)

🗓️ 19 Jan 2026 00:00:00Reported by TenableType

MiracleLinux 3 Ghostscript vulnerabilities listed in AXSA:2012-97:01.

Reporter	Title	Published	Views	Family All 120
Amazon	Medium: ghostscript	8 Feb 201200:00	–	amazon
Tenable Nessus	Amazon Linux AMI : ghostscript (ALAS-2012-42)	4 Sep 201300:00	–	nessus
Tenable Nessus	CentOS 5 / 6 : ghostscript (CESA-2012:0095)	3 Feb 201200:00	–	nessus
Tenable Nessus	CentOS 4 : ghostscript (CESA-2012:0096)	3 Feb 201200:00	–	nessus
Tenable Nessus	Fedora 13 : gv-3.7.1-1.fc13 (2010-10642)	9 Jul 201000:00	–	nessus
Tenable Nessus	Fedora 12 : gv-3.7.1-1.fc12 (2010-10660)	9 Jul 201000:00	–	nessus
Tenable Nessus	Fedora 14 : ghostscript-8.71-16.fc14 (2010-14549)	12 Oct 201000:00	–	nessus
Tenable Nessus	Fedora 12 : ghostscript-8.71-16.fc12 (2010-14633)	15 Oct 201000:00	–	nessus
Tenable Nessus	Fedora 13 : ghostscript-8.71-16.fc13 (2010-14640)	12 Oct 201000:00	–	nessus
Tenable Nessus	GLSA-201412-17 : GPL Ghostscript: Multiple vulnerabilities	15 Dec 201400:00	–	nessus

Source	Link
tsn	www.tsn.miraclelinux.com/en/node/2586
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2012-97:01.
##

include('compat.inc');

if (description)
{
  script_id(291487);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/19");

  script_cve_id(
    "CVE-2009-3743",
    "CVE-2010-2055",
    "CVE-2010-4054",
    "CVE-2010-4820"
  );

  script_name(english:"MiracleLinux 3 : ghostscript-8.70-6.6.0.1.AXS3 (AXSA:2012-97:01)");

  script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the
AXSA:2012-97:01 advisory.

    Ghostscript is a set of software that provides a PostScript interpreter, a set of C procedures (the
    Ghostscript library, which implements the graphics capabilities in the PostScript language) and an
    interpreter for Portable Document Format (PDF) files. Ghostscript translates PostScript code into many
    common, bitmapped formats, like those understood by your printer or screen. Ghostscript is normally used
    to display PostScript files and to print PostScript files to non-PostScript printers.
    If you need to display PostScript files or print them to non-PostScript printers, you should install
    ghostscript. If you install ghostscript, you also need to install the ghostscript-fonts package.
    Security issues fixed with this release:
    CVE-2009-3743
    Off-by-one error in the Ins_MINDEX function in the TrueType bytecode interpreter in Ghostscript before
    8.71 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory
    corruption) via a malformed TrueType font in a document that trigger an integer overflow and a heap-based
    buffer overflow.
    CVE-2010-2055
    Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows
    local users to execute arbitrary PostScript commands via a Trojan horse file, related to improper support
    for the -P- option to the gs program.
    CVE-2010-4054
    The gs_type2_interpret function in Ghostscript allows remote attackers to cause a denial of service
    (incorrect pointer dereference and application crash) via crafted font data in a compressed data stream,
    aka bug 691043.
    CVE-2010-4820
    No description available at the time of writing, use the CVE link.

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/2586");
  script_set_attribute(attribute:"solution", value:
"Update the affected ghostscript, ghostscript-devel and / or ghostscript-gtk packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2009-3743");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2010-4054");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"vendor_severity", value:"High");

  script_set_attribute(attribute:"vuln_publication_date", value:"2010/01/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/02/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/19");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:ghostscript");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:ghostscript-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:ghostscript-gtk");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:3");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Miracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm2.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^3([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 3.x', 'MIRACLE LINUX ' + os_version);

if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);

var constraints = [
  {
    'release': '3',
    'pkgs': [
      {'reference':'ghostscript-8.70-6.6.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'ghostscript-devel-8.70-6.6.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'ghostscript-gtk-8.70-6.6.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
    ]
  }
];

var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');

var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
  # Check that the target release is equal to the affected release
  if (!empty_or_null(constraint['release'])){
    if (constraint['release'] != os_release) continue;
  }
  if (!empty_or_null(constraint['sp'])){
    if (constraint['sp'] != os_sp) continue;
  }
  foreach var pkg ( constraint['pkgs'] ) {
    reference = NULL;
    sp = NULL;
    _cpu = NULL;
    el_string = NULL;
    rpm_spec_vers_cmp = NULL;
    epoch = NULL;
    allowmaj = NULL;
    exists_check = NULL;
    cves = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
    if (reference &&
        ## (no known rpm to check OR known rpm_exists)
        (!exists_check || rpm_exists(rpm:exists_check)) &&
        rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}
if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'ghostscript / ghostscript-devel / ghostscript-gtk');
}

19 Jan 2026 00:00Current

6.6Medium risk

Vulners AI Score6.6

CVSS 29.3

EPSS0.03936