Lucene search
OracleLinuxELSA-2019-0229HistoryJan 31, 2019 - 12:00 a.m.
ghostscript security and bug fix update
2019-01-3100:00:00
linux.oracle.com
38
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
82.9%
[9.07-31.el7_6.9]
- Related: #1667442 - CVE-2019-6116 - added missing parts of patch
[9.07-31.el7_6.8] - Resolves: #1667442 - CVE-2019-6116 ghostscript: subroutines within
pseudo-operators must themselves be pseudo-operators
[9.07-31.el7_6.7] - Resolves: #1665919 pdf2ps reports an error when reading from stdin
- Resolves: #1657333 - CVE-2018-16540 ghostscript: use-after-free in
copydevice handling (699661) - Resolves: #1660569 - CVE-2018-19475 ghostscript: access bypass in
psi/zdevice2.c (700153) - Resolves: #1660828 - CVE-2018-19476 ghostscript: access bypass in
psi/zicc.c - Resolves: #1661278 - CVE-2018-19477 ghostscript: access bypass in
psi/zfjbig2.c (700168)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | ghostscript | <Â 9.07-31.el7_6.9 | ghostscript-9.07-31.el7_6.9.src.rpm |
| oracle linux | 7 | aarch64 | ghostscript | <Â 9.07-31.el7_6.9 | ghostscript-9.07-31.el7_6.9.aarch64.rpm |
| oracle linux | 7 | aarch64 | ghostscript-cups | <Â 9.07-31.el7_6.9 | ghostscript-cups-9.07-31.el7_6.9.aarch64.rpm |
| oracle linux | 7 | aarch64 | ghostscript-devel | <Â 9.07-31.el7_6.9 | ghostscript-devel-9.07-31.el7_6.9.aarch64.rpm |
| oracle linux | 7 | noarch | ghostscript-doc | <Â 9.07-31.el7_6.9 | ghostscript-doc-9.07-31.el7_6.9.noarch.rpm |
| oracle linux | 7 | aarch64 | ghostscript-gtk | <Â 9.07-31.el7_6.9 | ghostscript-gtk-9.07-31.el7_6.9.aarch64.rpm |
| oracle linux | 7 | src | ghostscript | <Â 9.07-31.el7_6.9 | ghostscript-9.07-31.el7_6.9.src.rpm |
| oracle linux | 7 | i686 | ghostscript | <Â 9.07-31.el7_6.9 | ghostscript-9.07-31.el7_6.9.i686.rpm |
| oracle linux | 7 | x86_64 | ghostscript | <Â 9.07-31.el7_6.9 | ghostscript-9.07-31.el7_6.9.x86_64.rpm |
| oracle linux | 7 | x86_64 | ghostscript-cups | <Â 9.07-31.el7_6.9 | ghostscript-cups-9.07-31.el7_6.9.x86_64.rpm |
Related
nessus
nessus
CentOS 7 : ghostscript (CESA-2019:0229)
2019-02-11 00:00:00
Oracle Linux 7 : ghostscript (ELSA-2019-0229)
2019-02-01 00:00:00
Scientific Linux Security Update : ghostscript on SL7.x x86_64 (20190131)
2019-02-01 00:00:00
openvas
openvas
CentOS Update for ghostscript CESA-2019:0229 centos7
2019-02-10 00:00:00
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2019-1065)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2019-1092)
2020-01-23 00:00:00
centos
centos
ghostscript security update
2019-02-09 14:46:58
ghostscript security update
2019-05-13 15:09:20
redhat
redhat
(RHSA-2019:0229) Important: ghostscript security and bug fix update
2019-01-31 17:02:56
(RHSA-2019:1017) Important: ghostscript security update
2019-05-07 15:56:03
(RHSA-2019:0971) Important: ghostscript security update
2019-05-07 03:38:38
debian
debian
[SECURITY] [DSA 4346-1] ghostscript security update
2018-11-27 22:45:15
[SECURITY] [DLA 1598-1] ghostscript security update
2018-11-28 15:00:50
[SECURITY] [DSA 4346-1] ghostscript security update
2018-11-27 22:45:28
ubuntu
ubuntu
Ghostscript vulnerabilities
2018-11-29 00:00:00
Ghostscript vulnerability
2019-01-23 00:00:00
osv
osv
ghostscript - security update
2018-11-28 00:00:00
ghostscript - security update
2018-11-27 00:00:00
CVE-2018-19476
2018-11-23 05:29:03
ibm
ibm
Security Bulletin: Vulnerabilities in Ghostscript affect PowerKVM
2019-03-04 05:50:01
suse
suse
Security update for ghostscript (important)
2018-12-15 12:10:58
Security update for ghostscript (important)
2018-12-15 12:14:29
Security update for ghostscript (important)
2019-01-31 00:00:00
ubuntucve
ubuntucve
debiancve
debiancve
prion
prion
Type confusion
2018-11-23 05:29:00
Design/Logic Flaw
2018-11-23 05:29:00
Type confusion
2018-11-23 05:29:00
cve
cve
cvelist
cvelist
veracode
veracode
Authorization Bypass
2019-05-16 03:56:21
Authorization Bypass
2019-05-16 03:56:21
Authorization Bypass
2019-05-16 03:56:21
alpinelinux
alpinelinux
fedora
fedora
[SECURITY] Fedora 30 Update: ghostscript-9.26-3.fc30
2019-03-29 19:28:20
[SECURITY] Fedora 29 Update: ghostscript-9.26-1.fc29
2019-02-12 02:58:39
[SECURITY] Fedora 29 Update: ghostscript-9.26-3.fc29
2019-03-21 14:41:53
zdt
zdt
Ghostscript 9.26 - Pseudo-Operator Remote Code Execution Exploit
2019-01-24 00:00:00
mageia
mageia
Updated ghostscript packages fix a security vulnerability
2019-01-30 22:39:18
Updated ghostscript packages fix security vulnerability
2019-06-10 22:17:03
Updated ghostscript packages fix security vulnerability
2019-04-05 21:12:59
archlinux
archlinux
[ASA-201901-18] ghostscript: sandbox escape
2019-01-29 00:00:00
[ASA-201904-5] ghostscript: sandbox escape
2019-04-11 00:00:00
redhatcve
redhatcve
oraclelinux
oraclelinux
ghostscript security update
2019-05-07 00:00:00
ghostscript security, bug fix, and enhancement update
2019-08-13 00:00:00
ghostscript security update
2019-07-30 00:00:00
amazon
amazon
Important: ghostscript
2021-02-17 00:58:00
slackware
slackware
[slackware-security] ghostscript
2019-04-02 21:14:35
gentoo
gentoo
GPL Ghostscript: Multiple vulnerabilities
2020-04-01 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
82.9%
Related for ELSA-2019-0229