Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.31 views

Fedora 28 : ghostscript (2018-56221eb24b)

This is a rebase to latest upstream version of Ghostscript, which fixes several high important CVEs recently discovered. It is advised to update this version as soon as possible. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update syste...

7.8CVSS6.5AI score0.03037EPSS
Exploits1References9
Packet Storm
Packet Storm
added 2018/11/30 12:0 a.m.61 views

Ubuntu Ghostscript Failed Fix

Ubuntu: incomplete fix for CVE-2018-16510 This Ubuntu advisory claims to fix CVE-2018-16510: https://usn.ubuntu.com/3768-1/ That does not appear to be true. The root cause of CVE-2018-16510 was that a bunch of procedures were in userdict that should have been executeonly, but were not. In...

6.8CVSS7.8AI score0.01745EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.36 views

SUSE SLES12 Security Update : ghostscript (SUSE-SU-2018:2975-2)

This update for ghostscript to version 9.25 fixes the following issues : These security issues were fixed : CVE-2018-17183: Remote attackers were be able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code bsc1109105 CVE-2018-15909: Prevent type confusio...

9.3CVSS7.2AI score0.92499EPSS
Exploits5References49
OSV
OSV
added 2018/10/18 12:51 p.m.10 views

SUSE-SU-2018:2975-2 Security update for ghostscript

This update for ghostscript to version 9.25 fixes the following issues: These security issues were fixed: - CVE-2018-17183: Remote attackers were be able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code bsc1109105 - CVE-2018-15909: Prevent type...

9.3CVSS8.2AI score0.92499EPSS
Exploits5References33
OpenVAS
OpenVAS
added 2018/10/06 12:0 a.m.29 views

openSUSE: Security Advisory for ghostscript (openSUSE-SU-2018:3036-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS7.4AI score0.92499EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2018/09/18 12:0 a.m.34 views

Fedora 27 : ghostscript (2018-f1b1ed38b3)

Security update for CVE-2018-16543 and CVE-2018-16510, which were recently discovered. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

7.8CVSS7.4AI score0.01745EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2018/09/18 12:0 a.m.41 views

Fedora Update for ghostscript FEDORA-2018-f1b1ed38b3

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.01905EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2018/09/06 5:20 a.m.26 views

CVE-2018-16510

It was discovered that ghostscript did not properly handle certain error conditions related to the SC and CS PDF operators. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or, possibly, execute arbitrary code in the ghostscript context via a speciall...

7.8CVSS4.5AI score0.01745EPSS
Exploits1References2
OSV
OSV
added 2018/09/05 6:29 a.m.25 views

CVE-2018-16510

An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact...

7.8CVSS7.4AI score0.01745EPSS
Exploits1References6
CVE
CVE
added 2018/09/05 6:0 a.m.141 views

CVE-2018-16510

CVE-2018-16510 refers to Ghostscript before 9.24, where an issue in the PDF primitives CS and SC incorrectly handled the exec stack. This could allow remote attackers to crash the interpreter or cause unspecified other impact by supplying crafted PDFs. The connected advisories confirm remediation...

7.8CVSS7.9AI score0.01745EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder