14 matches found
EUVD-2018-8602
Malware in sbrugna...
EUVD-2022-6451
Malicious code in bioql PyPI...
EUVD-2023-42358
Malicious code in bioql PyPI...
Important: ghostscript
Issue Overview: The calculation of the buffer size was being done with int values, and overflowing that data type. The bug has existed since the creation of the file contrib/japanese/gdevnpdl.c The calculation of the buffer size was being done with int values, and overflowing that data type. By...
Linux Distros Unpatched Vulnerability : CVE-2018-16509
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Artifex Ghostscript before 9.24. Incorrect restoration of privilege checking during handling of /invalidaccess exceptions could be us...
Linux Distros Unpatched Vulnerability : CVE-2018-11645
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status command even if -dSAFER is used, which might allow remote attackers to determine the...
Linux Distros Unpatched Vulnerability : CVE-2020-14373
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after free was found in igcrelocstructptr of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial o...
PT-2025-9728 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A heap-use-after-free READ 4 crash type issue has been identified. The crash state involves gc trace, gs gc reclaim, and ireclaim. Recommendations: At the moment, there is no information abo...
Medium: ghostscript
Issue Overview: PS interpreter - check Indexed colour space index NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707990 NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=85bd9d2f4b792fe67aef22f1a4117457461b8ba6 NOTE:...
Medium: ghostscript
Issue Overview: An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard. CVE-2023-52722 Affected Packages: ghostscript Issue Correction: Run dnf update ghostscript --releasever 2023.4.20240528 to upda...
PT-2024-40781 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ, with a crash state involving functions such as chunk free object and stream dct finalize. No...
Important: ghostscript
Issue Overview: Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices with the %pipe% prefix or the | pipe character prefix. CVE-2023-36664 Affected Packages: ghostscript Issue Correction: Run dnf update ghostscript --releasever 2023.1.20230809 or dnf update...
PT-2022-37231 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a global buffer overflow read of 8 bytes. The crash state involves several functions, including get unpack proc, xps begin typed...
GhostScript symbolic links problem
Symbolic links problem in multiple scripts...