CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5485 matches found

ossfuzz•added 2020/09/07 8:1 a.m.•14 views

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in cmd_put_drawing_color

Detailed Report: https://oss-fuzz.com/testcase?key=5072828683255808 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: cmdputdrawingcolor...

6.8AI score

Exploits0Affected Software1

ossfuzz•added 2020/09/07 6:12 a.m.•13 views

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in find_zone_height

Detailed Report: https://oss-fuzz.com/testcase?key=5111576145952768 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: findzoneheight...

6.8AI score

Exploits0Affected Software1

ossfuzz•added 2020/09/06 10:49 p.m.•18 views

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in get_float

Detailed Report: https://oss-fuzz.com/testcase?key=4859052725895168 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: getfloat parsedict parsefont...

6.8AI score

Exploits0Affected Software1

ossfuzz•added 2020/09/06 5:33 p.m.•16 views

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in gs_point_transform_inverse

Detailed Report: https://oss-fuzz.com/testcase?key=5632002567700480 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: gspointtransforminverse...

6.8AI score

Exploits0Affected Software1

NVD•added 2020/09/03 6:15 p.m.•14 views

CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

5.5CVSS6.1AI score0.00453EPSS

Exploits1References3

OSV•added 2020/09/03 6:15 p.m.•24 views

CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

5.5CVSS6.4AI score

Exploits0References3

OSV•added 2020/09/03 6:15 p.m.•1 views

DEBIAN-CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

5.5CVSS6.4AI score0.00453EPSS

Exploits1References1

UbuntuCve•added 2020/09/03 6:15 p.m.•31 views

CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

5.5CVSS6.7AI score0.00453EPSS

Exploits1References1

OSV•added 2020/09/03 6:15 p.m.•0 views

UBUNTU-CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

5.5CVSS6.7AI score0.00453EPSS

Exploits1References2

CVE•added 2020/09/03 5:54 p.m.•157 views

CVE-2020-14373

CVE-2020-14373 involves a use-after-free in igc_reloc_struct_ptr() (psi/igc.c) of Ghostscript, reported in version 9.25. A local attacker could craft a PDF to trigger a denial of service. The available documents confirm the root cause location and impact (DoS) but do not provide published exploit...

5.5CVSS5.9AI score0.00453EPSS

Exploits1References3Affected Software1

Cvelist•added 2020/09/03 5:54 p.m.•19 views

CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

6AI score0.00453EPSS

Exploits1References3

Debian CVE•added 2020/09/03 5:54 p.m.•37 views

CVE-2020-14373

A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service...

5.5CVSS6.1AI score0.00453EPSS

Exploits1

Tenable Nessus•added 2020/08/31 12:0 a.m.•22 views

GLSA-202008-20 : GPL Ghostscript: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202008-20 GPL Ghostscript: Multiple vulnerabilities Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE...

9.8CVSS6.4AI score0.05186EPSS

Exploits25References27

Gentoo Linux•added 2020/08/29 12:0 a.m.•46 views

GPL Ghostscript: Multiple vulnerabilities

Background Ghostscript is an interpreter for the PostScript language and for PDF. Description Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workarou...

9.8CVSS2.3AI score0.05186EPSS

Exploits25

OpenVAS•added 2020/08/27 12:0 a.m.•25 views

Debian: Security Advisory (DSA-4748-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.02956EPSS

Exploits25References4

Tenable Nessus•added 2020/08/26 12:0 a.m.•43 views

Debian DSA-4748-1 : ghostscript - security update

Multiple security issues were discovered in Ghostscript, the GPL PostScript/PDF interpreter which could result in denial of service and potentially the execution of arbitrary code if malformed document files are processed. C Tenable Network Security, Inc. The descriptive text and package checks i...

7.8CVSS6.6AI score0.02956EPSS

Exploits25References28

Debian•added 2020/08/25 7:27 p.m.•56 views

[SECURITY] [DSA 4748-1] ghostscript security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4748-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 25, 2020 https://www.debian.org/security/faq -...

7.8CVSS7.7AI score0.02956EPSS

Exploits25

Mageia•added 2020/08/25 8:13 a.m.•37 views

Updated ghostscript packages fix security vulnerabilities

The updated packages fix security vulnerabilities: A buffer overflow vulnerability in lprnisblack in contrib/lips4/gdevlprn.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. CVE-2020-16287 A buffer overflow vulnerability in...

7.8CVSS4.2AI score0.02956EPSS

Exploits25References2

OSV•added 2020/08/25 8:13 a.m.•11 views

MGASA-2020-0344 Updated ghostscript packages fix security vulnerabilities

7.8CVSS6AI score0.02956EPSS

Exploits25References3

NCSC•added 2020/08/25 12:0 a.m.•2 views

Multiple vulnerabilities fixed in Ghostscript

Several vulnerabilities have been fixed in Ghostscript. The vulnerabilities allow a remote malicious party to cause a denial-of-service, or potentially execute arbitrary code execute with the privileges of the process calling Ghostscript. -= Ubuntu =- Canonical has made updates available for Ubun...

7.8CVSS7.6AI score0.02956EPSS

Exploits25

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by