Lucene search
K

102 matches found

Tenable Nessus
Tenable Nessus
added 2025/04/14 12:0 a.m.12 views

Amazon Linux 2023 : ghostscript, ghostscript-gtk, ghostscript-tools-dvipdf (ALAS2023-2025-927)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-927 advisory. PDF interpreter - Guard against unsigned int overflow. A large Type 4 function definition can overflow the uint counter, causing the allocated buffer to be smaller than required. Info:...

9.8CVSS7.2AI score0.00586EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.42 views

Fedora 40 : ghostscript (2025-3a7a29de24)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3a7a29de24 advisory. CVE-2025-27835 ghostscript: Buffer overflow when converting glyphs to unicode fedora2355025 CVE-2025-27834 ghostscript: Buffer overflow caused by an...

9.8CVSS7.3AI score0.00806EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/04/04 12:0 a.m.24 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ghostscript (SUSE-SU-2025:1127-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1127-1 advisory. - CVE-2025-27831: Fixed text buffer overflow in DOCXWRITE TXTWRITE device via long characters to...

9.8CVSS7.1AI score0.00806EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/04/03 12:0 a.m.13 views

SUSE SLES12 Security Update : ghostscript (SUSE-SU-2025:1118-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1118-1 advisory. - CVE-2025-27831: Fixed text buffer overflow in DOCXWRITE TXTWRITE device via long characters to devices/vector/doccommon.c bsc1240075 -...

9.8CVSS7.1AI score0.00806EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.14 views

Amazon Linux 2023 : ghostscript, ghostscript-gtk, ghostscript-tools-dvipdf (ALAS2023-2025-908)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-908 advisory. Potential integer and buffer overflow with DollarBlend during serializing a multiple master font for passing to Freetype. Fixed by changing a variable type from short to unsigned short and...

9.8CVSS7.2AI score0.00579EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.14 views

Amazon Linux 2 : ghostscript (ALAS-2025-2805)

The version of ghostscript installed on the remote host is prior to 9.54.0-9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2805 advisory. Potential integer and buffer overflow with DollarBlend during serializing a multiple master font for passing to...

9.8CVSS7.1AI score0.00806EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/03/28 12:0 a.m.16 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : Ghostscript vulnerabilities (USN-7378-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7378-1 advisory. It was discovered that Ghostscript incorrectly serialized DollarBlend in certain fonts. An attacker could use this issue ...

9.8CVSS7.3AI score0.00806EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2025/03/27 12:0 p.m.100 views

USN-7378-1: Ghostscript vulnerabilities

It was discovered that Ghostscript incorrectly serialized DollarBlend in certain fonts. An attacker could use this issue to cause Ghostscript to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-27830 It was discovered that Ghostscript incorrectly handled the...

9.8CVSS7.2AI score0.00806EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/03/01 9:21 p.m.5 views

Advisory ROSA-SA-2025-2723

Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-15.0.2.rv30 CVE-ID: CVE-2024-46951 BDU-ID: 2024-09419 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the psi/zcolor.c component of the Ghostscript document processing, conversion, and generation software suite...

7.8CVSS7.6AI score0.00387EPSS
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.5 views

GHSA-3XR3-VRM2-6JC7 vulnerabilities

Vulnerabilities for packages: ghostscript...

7.3AI score
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.6 views

GHSA-R824-GQ56-GJGX vulnerabilities

Vulnerabilities for packages: ghostscript...

7.3AI score
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.5 views

GHSA-5473-W6GQ-5R5G vulnerabilities

Vulnerabilities for packages: ghostscript...

7.3AI score
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.6 views

GHSA-G9M4-VFQ7-W439 vulnerabilities

Vulnerabilities for packages: ghostscript...

7.3AI score
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.6 views

GHSA-V6HC-9C6C-F599 vulnerabilities

Vulnerabilities for packages: ghostscript...

7.3AI score
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.4 views

GHSA-MQ7H-FM69-H6XQ vulnerabilities

Vulnerabilities for packages: ghostscript...

7.3AI score
Exploits0
Rosalinux
Rosalinux
added 2025/02/15 10:9 p.m.5 views

Advisory ROSA-SA-2025-2682

Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-11.0.1 CVE-ID: CVE-2019-14813 BDU-ID: 2019-03227 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the setsystemparams procedure of the PostScript Ghostscript file format conversion program is related to...

9.8CVSS8.2AI score0.11397EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/28 1:49 p.m.18 views

Advisory ROSA-SA-2025-2623

software: ghostscript10 10.02.1 OS: ROSA-CHROME packageevrstring: ghostscript10-10.02.1-3 CVE-ID: CVE-2024-29506 BDU-ID: 2024-05558 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the pdfiapplyfilter function of the Ghostscript document processing, conversion, and generation software suite is...

8.8CVSS6.7AI score0.01446EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/28 1:49 p.m.4 views

Advisory ROSA-SA-2025-2622

software: ghostscript 9.54.0 OS: ROSA-CHROME packageevrstring: ghostscript-9.54.0-11 CVE-ID: CVE-2023-38559 BDU-ID: 2023-07662 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the devnpcxwriterle function of the base/gdevdevdevn.c component of the Ghostscript document processing software suite...

5.5CVSS9.2AI score0.00447EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2025/01/23 12:0 a.m.8 views

GPL Ghostscript: Multiple Vulnerabilities

Background Ghostscript is an interpreter for the PostScript language and for PDF. Description Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workarou...

8.4CVSS7.7AI score0.0055EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/01/14 12:0 a.m.21 views

EulerOS 2.0 SP9 : ghostscript (EulerOS-SA-2025-1055)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver...

8.8CVSS7.7AI score0.01425EPSS
Exploits0References7
Rows per page
Query Builder