Lucene search
Redhat.comRH:CVE-2019-14869HistoryNov 14, 2019 - 1:37 p.m.
CVE-2019-14869
2019-11-1413:37:34
redhat.com
access.redhat.com
8
0.973 High
EPSS
Percentile
99.9%
A flaw was found in the .charkeys procedure, where it did not properly secure its privileged calls, enabling scripts to bypass -dSAFER restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands.
Mitigation
Please refer to the "Mitigation" section of CVE-2018-16509 : <https://access.redhat.com/security/cve/cve-2018-16509>
Related
ubuntu
ubuntu
Ghostscript vulnerability
2019-11-14 00:00:00
redhat
redhat
(RHSA-2019:3890) Important: ghostscript security update
2019-11-14 19:09:12
(RHSA-2020:0222) Important: ghostscript security update
2020-01-23 19:44:29
(RHSA-2018:3760) Important: ghostscript security update
2018-12-03 21:13:23
nessus
nessus
Fedora 30 : ghostscript (2019-17f42f585a)
2019-11-18 00:00:00
EulerOS 2.0 SP8 : ghostscript (EulerOS-SA-2020-1006)
2020-01-02 00:00:00
suse
suse
Security update for ghostscript (important)
2019-11-20 00:00:00
Security update for ghostscript (important)
2019-11-20 00:00:00
Security update for ghostscript (important)
2018-10-05 21:10:24
openvas
openvas
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2020-1059)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2983-1)
2021-04-19 00:00:00
Mageia: Security Advisory (MGASA-2019-0336)
2022-01-28 00:00:00
mageia
mageia
Updated ghostscript packages fix security vulnerability
2019-11-20 00:16:53
Updated ghostscript packages fix security vulnerabilities
2018-09-21 02:17:55
alpinelinux
alpinelinux
CVE-2019-14869
2019-11-15 12:15:10
CVE-2018-16802
2018-09-10 16:29:00
prion
prion
Design/Logic Flaw
2019-11-15 12:15:00
Design/Logic Flaw
2018-09-05 06:29:00
Design/Logic Flaw
2018-09-10 16:29:00
osv
osv
CVE-2019-14869
2019-11-15 12:15:10
CVE-2018-16509
2018-09-05 06:29:00
ghostscript - security update
2019-11-14 00:00:00
ubuntucve
ubuntucve
cvelist
cvelist
cert
cert
Ghostscript contains multiple -dSAFER sandbox bypass vulnerabilities
2018-08-21 00:00:00
symantec
symantec
Artifex Ghostscript CVE-2019-14869 Remote Privilege Escalation Vulnerability
2019-11-05 00:00:00
jvn
jvn
JVN#52486659: Ghostscript access restriction bypass vulnerability
2020-02-05 00:00:00
centos
centos
ghostscript, libgs security update
2019-12-03 20:29:33
ghostscript security update
2018-12-06 18:54:07
ghostscript security update
2018-12-13 20:45:18
cve
cve
debiancve
debiancve
debian
debian
[SECURITY] [DSA 4569-1] ghostscript security update
2019-11-14 21:37:23
[SECURITY] [DLA 1992-1] ghostscript security update
2019-11-15 02:16:11
[SECURITY] [DSA 4569-1] ghostscript security update
2019-11-14 21:37:23
oraclelinux
oraclelinux
ghostscript security update
2019-11-22 00:00:00
ghostscript security update
2019-11-15 00:00:00
ghostscript security update
2018-12-03 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: ghostscript-9.27-2.fc31
2019-11-18 22:48:08
[SECURITY] Fedora 30 Update: ghostscript-9.27-2.fc30
2019-11-18 01:19:29
[SECURITY] Fedora 29 Update: ghostscript-9.27-2.fc29
2019-11-24 01:55:20
f5
f5
K02495251 : Ghostscript vulnerability CVE-2018-16509 (VU#332928)
2018-09-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Artifex Ghostscript Remote Code Execution (CVE-2018-16509)
2022-09-18 00:00:00
redhatcve
redhatcve
veracode
veracode
Information Disclosure
2019-11-15 00:29:23
Privilege Escalation
2019-01-15 09:27:20
Arbitrary Command Execution
2019-01-15 09:27:10
nvd
nvd
slackware
slackware
[slackware-security] ghostscript
2018-09-13 22:03:55
amazon
amazon
Important: ghostscript
2018-12-20 00:04:00
Important: ghostscript
2018-10-08 22:17:00
ibm
ibm
Security Bulletin: Vulnerabilities in Ghostscript affect PowerKVM
2018-12-17 14:30:02