2801 matches found
DEBIAN-CVE-2008-6679
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
Buffer overflow
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
CVE-2008-6679
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
CVE-2008-6679
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
CVE-2008-6679
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
CVE-2008-6679
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
CVE-2008-6679
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service ps2pdf crash and possibly execute arbitrary code via a crafted Postscript file...
Ghostscript gdevpdtb.c文件栈溢出漏洞
BUGTRAQ ID: 34340 Ghostscript是用于显示PostScript文件或向非PostScript打印机打印这些文件的程序。 Ghostscript的src/gdevpdtb.c文件中的pdfbasefontalloc函数没有正确地为字体分配缓冲区。如果用户受骗将特制的Postscript文件转换成PDF文件的话,就可以触发栈溢出,导致执行任意代码。 Ghostscript 8.x Ghostscript ----------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Ghostscript CCITTFax解码过滤器拒绝服务漏洞
BUGTRAQ ID: 34337 Ghostscript是用于显示PostScript文件或向非PostScript打印机打印这些文件的程序。 如果Ghostscript的CCITTFax解码过滤器解析了特制的PDF文件的话,就可能导致Ghostscript脚本崩溃。 Ghostscript Ghostscript 8.x Ghostscript ----------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: https://bugzilla.redhat.com/attachment.cgi?id=310029...
Debian: Security Advisory (DSA-1746-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
Integer overflow
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
CVE-2009-0584
CVE-2009-0584 , together with CVE-2009-0583, affects Ghostscript’s ICC library (icclib) used in Ghostscript 8.64 and earlier and Argyll CMS 1.0.3 and earlier. A crafted ICC profile embedded in a PostScript or PDF image can trigger context-dependent conditions that cause an application crash (deni...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
Ghostscript多个输入验证和整数溢出漏洞
BUGTRAQ ID: 34184 CVECAN ID: CVE-2009-0583,CVE-2009-0584 Ghostscript是用于显示PostScript文件或向非PostScript打印机打印这些文件的程序。 Ghostscript的国际色彩联盟格式库(icclib)中存在多个可导致堆溢出的整数溢出,以及多个不充分输入验证错误。攻击者可以使用特制的ICC配置文件创建嵌入了图形的恶意PostScript或PDF文件,如果受害用户打开了该文件就会导致Ghostscript崩溃或执行任意代码。 Ghostscript Ghostscript 8.x Ghostscript...
Ghostscript: User-assisted execution of arbitrary code
Background Ghostscript is an interpreter for the PostScript language and the Portable Document Format PDF. Description Jan Lieskovsky from the Red Hat Security Response Team discovered the following vulnerabilities in Ghostscript's ICC Library: Multiple integer overflows CVE-2009-0583. Multiple...