15 matches found
MiracleLinux 8 : ghostscript-9.27-16.el8_10 (AXSA:2025-9898:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9898:01 advisory. ghostscript: heap buffer over write vulnerability in GhostScript's lp8000printpage in gdevlp8k.c CVE-2020-27792 ghostscript: dangling pointer in...
CLSA-2025-1750783474 ghostscript: Fix of CVE-2024-46953
CVE-2024-46953: fix integer overflow in parsing filename format string to prevent path truncation and possible code execution...
Advisory ROSA-SA-2025-2887
Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-16.0.1.rv30 CVE-ID: CVE-2020-27792 BDU-ID: 2023-09076 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the lp8000printpage function of the gdevlp8k.c component of the Ghostscript document processing software...
ALSA-2025:4362 Moderate: ghostscript security update
The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: heap buffer over write vulnerability in GhostScript's lp8000printpage in...
Linux Distros Unpatched Vulnerability : CVE-2024-46953
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output...
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1055)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2023 : ghostscript, ghostscript-gtk, ghostscript-tools-dvipdf (ALAS2023-2024-774)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-774 advisory. PS interpreter - check the type of the Pattern Implementation NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707991NOTE: https://cgit.ghostscript.com/cgi-...
[SECURITY] [DLA 3965-1] ghostscript security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3965-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk November 24, 2024 https://wiki.debian.org/LTS -...
Debian dla-3965 : ghostscript - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3965 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3965-1 [email protected]...
Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : Ghostscript vulnerabilities (USN-7103-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7103-1 advisory. It was discovered that Ghostscript incorrectly handled parsing certain PS files. An attacker could use this issue to caus...
CVE-2024-46953
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output filename results in path truncation, and possible path traversal and code execution...
SUSE: Security Advisory (SUSE-SU-2024:3941-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:3942-1 Security update for ghostscript
This update for ghostscript fixes the following issues: - CVE-2024-46951: Fixed arbitrary code execution via unchecked 'Implementation' pointer in 'Pattern' color space bsc1232265. - CVE-2024-46953: Fixed integer overflow when parsing the page format results in path truncation, path traversal, co...
SUSE-SU-2024:3941-1 Security update for ghostscript
This update for ghostscript fixes the following issues: - CVE-2024-46951: Fixed arbitrary code execution via unchecked 'Implementation' pointer in 'Pattern' color space bsc1232265. - CVE-2024-46953: Fixed integer overflow when parsing the page format results in path truncation, path traversal, co...
MGASA-2024-0326 Updated ghostscript packages fix security vulnerabilities
Amongst other general bug fixes, this release addresses: CVE-2024-46951 CVE-2024-46952 CVE-2024-46953 CVE-2024-46954 CVE-2024-46955 CVE-2024-46956...