Lucene search
K

35 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.13 views

Alibaba Cloud Linux 3 : 0123: ghostscript (ALINUX3-SA-2022:0123)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0123 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-10216: In ghostscript before...

9.8CVSS7.6AI score0.43901EPSS
Exploits4References11
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2019:2460-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.11397EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:2478-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.11397EPSS
Exploits2References9
OpenVAS
OpenVAS
added 2020/06/16 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2020-1658)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.11397EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/04/02 12:0 a.m.30 views

EulerOS Virtualization for ARM 64 3.0.6.0 : ghostscript (EulerOS-SA-2020-1348)

According to the versions of the ghostscript packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did n...

9.8CVSS7.8AI score0.11397EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2020/03/13 12:0 a.m.58 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2020-1240)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.23453EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2020/02/25 12:0 a.m.41 views

EulerOS 2.0 SP8 : ghostscript (EulerOS-SA-2020-1150)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in, ghostscript versions prior to 9.50, in the .pdfhookDSCCreator procedure where it did not properly secure its privilege...

9.8CVSS7.8AI score0.11397EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2019-2242)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.11397EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2019-2151)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.23453EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.29 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : ghostscript Multiple Vulnerabilities (NS-SA-2019-0250)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has ghostscript packages installed that are affected by multiple vulnerabilities: - psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status command even if -dSAFER is used, which might allow remote attackers to...

9.8CVSS7.2AI score0.11397EPSS
Exploits2References7
ArchLinux
ArchLinux
added 2019/11/03 12:0 a.m.29 views

[ASA-201911-5] ghostscript: sandbox escape

Arch Linux Security Advisory ASA-201911-5 ========================================= Severity: High Date : 2019-11-03 CVE-ID : CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 Package : ghostscript Type : sandbox escape Remote : No Link : https://security.archlinux.org/AVG-1031 Summary...

9.8CVSS0.4AI score0.11397EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2019/10/15 12:0 a.m.36 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : ghostscript Multiple Vulnerabilities (NS-SA-2019-0203)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has ghostscript packages installed that are affected by multiple vulnerabilities: - psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status command even if -dSAFER is used, which might allow remote attackers to...

9.8CVSS7.1AI score0.11397EPSS
Exploits2References7
RedhatCVE
RedhatCVE
added 2019/10/08 11:31 p.m.52 views

CVE-2019-14813

A flaw was found in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass -dSAFER restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands...

9.8CVSS1.2AI score0.92499EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2019/10/01 12:0 a.m.33 views

openSUSE Security Update : ghostscript (openSUSE-2019-2222)

This update for ghostscript fixes the following issues : Security issues fixed : - CVE-2019-3835: Fixed an unauthorized file system access caused by an available superexec operator. bsc1129180 - CVE-2019-3839: Fixed an unauthorized file system access caused by available privileged operators...

9.8CVSS6.4AI score0.11397EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2019/09/30 12:0 a.m.26 views

Fedora 29 : ghostscript (2019-ebd6c4f15a)

rebase to latest upstream version 9.27 - security fixes added for : - CVE-2019-14811 bug 1747908 - CVE-2019-14812 bug 1747907 - CVE-2019-14813 bug 1747906 - CVE-2019-14817 bug 1747909 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update...

9.8CVSS7.4AI score0.43901EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2019/09/25 12:0 a.m.26 views

Fedora 30 : ghostscript (2019-953fc0f16d)

rebase to latest upstream version 9.27 - security fixes added for : - CVE-2019-14811 bug 1747908 - CVE-2019-14812 bug 1747907 - CVE-2019-14813 bug 1747906 - CVE-2019-14817 bug 1747909 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update...

9.8CVSS7.4AI score0.43901EPSS
Exploits4References7
Cent OS
Cent OS
added 2019/09/18 6:44 p.m.105 views

ghostscript, libgs security update

CentOS Errata and Security Advisory CESA-2019:2586 An update for ghostscript is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS7.2AI score0.11397EPSS
Exploits2References7
Mageia
Mageia
added 2019/09/12 7:9 p.m.32 views

Updated ghostscript packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Safer Mode Bypass by .forceput Exposure in .pdfhookDSCCreator. CVE-2019-14811 Safer Mode Bypass by .forceput Exposure in setuserparams. CVE-2019-14812 Safer Mode Bypass by .forceput Exposure in setsystemparams. CVE-2019-14813 Safer Mode Bypass by...

9.8CVSS1.5AI score0.11397EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/09/09 12:0 a.m.43 views

Oracle Linux 8 : ghostscript (ELSA-2019-2591)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2591 advisory. - Resolves: 1744010 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfhookDSCCreator 701445 - Resolves: 1744014 -...

9.8CVSS7.7AI score0.11397EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2019/09/09 12:0 a.m.38 views

Debian DSA-4518-1 : ghostscript - security update

It was discovered that various procedures in Ghostscript, the GPL PostScript/PDF interpreter, do not properly restrict privileged calls, which could result in bypass of file system restrictions of the dSAFER sandbox. C Tenable Network Security, Inc. The descriptive text and package checks in this...

9.8CVSS7.5AI score0.11397EPSS
Exploits2References8
Rows per page
Query Builder