2 matches found
ghostscript: -dSAFER escape in .charkeys (701841)
A flaw was found in the .charkeys procedure, where it did not properly secure its privileged calls, enabling scripts to bypass -dSAFER restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access...
ghostscript security update
9.25-2.3 - 1769340 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys...