CVE-2026-34554 iccDEV: HBO in CIccApplyCmmSearch::costFunc()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a heap-buffer-overflow HBO in CIccApplyCmmSearch::costFunc can be triggered via malformed JSON configuration input to the iccApplySearch tool. AddressSanitizer reports an...

MiracleLinux 3 : ghostscript-8.15.2-9.4.4.1AXS3 (AXSA:2009-29:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-29:01 advisory. Ghostscript is a set of software that provides a PostScriptTM interpreter, a set of C procedures the Ghostscript library, which implements the graphic...

MiracleLinux 4 : ghostscript-8.70-14.AXS4.1 (AXSA:2012-918:03)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-918:03 advisory. Ghostscript is a set of software that provides a PostScriptTM interpreter, a set of C procedures the Ghostscript library, which implements the graphics...

MiracleLinux 3 : ghostscript-8.70-14.1.0.1.AXS3 (AXSA:2012-939:03)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-939:03 advisory. Ghostscript is a set of software that provides a PostScriptTM interpreter, a set of C procedures the Ghostscript library, which implements the graphics...

EUVD-2009-0790

Malware in sbrugna...

CVE-2012-4405

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

Scientific Linux Security Update : ghostscript on SL3.x, SL4.x, SL5.x i386/x86_64

It was discovered that the Red Hat Security Advisory RHSA-2009:0345 did not address all possible integer overflow flaws in Ghostscript's International Color Consortium Format library icclib. Using specially crafted ICC profiles, an attacker could create a malicious PostScript or PDF file with...

CentOS Update for ghostscript CESA-2009:0345 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

SuSE 10 Security Update : Ghostscript (ZYPP Patch Number 6066)

Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files. CVE-2009-0583 / CVE-2009-0584 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

SuSE 11 Security Update : Ghostscript (SAT Patch Number 636)

Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files. CVE-2009-0583 / CVE-2009-0584 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

SuSE 11 Security Update : GhostScript (SAT Patch Number 876)

Specially crafted file could cause a heap-overflow in JBIG2 decoder CVE-2009-0196, an integer overflow in ICC library CVE-2009-0792, a buffer overflow in BaseFont writer module CVE-2008-6679 or crash the CCITTFax decoder. CVE-2007-6725 The previous security update introduced a regression that bro...

openSUSE Security Update : ghostscript-devel (ghostscript-devel-592)

Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files CVE-2009-0583, CVE-2009-0584. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : ghostscript-devel (ghostscript-devel-592)

Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files CVE-2009-0583, CVE-2009-0584. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : ghostscript-devel (ghostscript-devel-877)

Specially crafted file could cause a heap-overflow in JBIG2 decoder CVE-2009-0196, an integer overflow in ICC library CVE-2009-0792, a buffer overflow in BaseFont writer module CVE-2008-6679 or crash the CCITTFax decoder CVE-2007-6725. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Fedora Core 9 FEDORA-2009-3720 (argyllcms)

The remote host is missing an update to argyllcms announced via advisory FEDORA-2009-3720. OpenVAS Vulnerability Test $Id: fcore20093720.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3720 argyllcms Authors: Thomas Reinke Copyright: Copyright c 200...

CVE-2009-0792

Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...

CVE-2009-0792

Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...

CVE-2009-0792

Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...

Gentoo Security Advisory GLSA 200903-37 (ghostscript-gpl ghostscript-esp ghostscript-gnu)

The remote host is missing updates announced in advisory GLSA 200903-37. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora Core 9 FEDORA-2009-3031 (argyllcms)

The remote host is missing an update to argyllcms announced via advisory FEDORA-2009-3031. OpenVAS Vulnerability Test $Id: fcore20093031.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3031 argyllcms Authors: Thomas Reinke Copyright: Copyright c 200...