Lucene search
K

66 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2025/04/03 12:0 a.m.4 views

ghostscript-10.05.0-1.1 on GA media (moderate)

ghostscript-10.05.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:14953-1 Rating: moderate Cross-References: CVE-2025-27830 CVE-2025-27831 CVE-2025-27832 CVE-2025-27833 CVE-2025-27834 CVE-2025-27835 CVE-2025-27836 CVE-2025-27837 CVSS scores: CVE-2025-27830 SUSE : 5...

7.1CVSS7.4AI score0.00806EPSS
Exploits0
Amazon
Amazon
added 2025/04/01 12:0 a.m.22 views

Important: ghostscript

Issue Overview: Potential integer and buffer overflow with DollarBlend during serializing a multiple master font for passing to Freetype. Fixed by changing a variable type from short to unsigned short and checking if a length variable exceeds permitted limit. Fixed in ghostpdl-10.05.0...

9.8CVSS7.9AI score0.00806EPSS
Exploits0
Amazon
Amazon
added 2025/04/01 12:0 a.m.5 views

Important: ghostscript

Issue Overview: Potential integer and buffer overflow with DollarBlend during serializing a multiple master font for passing to Freetype. Fixed by changing a variable type from short to unsigned short and checking if a length variable exceeds permitted limit. Fixed in ghostpdl-10.05.0...

9.8CVSS7.4AI score0.00579EPSS
Exploits0
Amazon
Amazon
added 2025/04/01 12:0 a.m.2 views

Important: ghostscript

Issue Overview: Potential integer and buffer overflow with DollarBlend during serializing a multiple master font for passing to Freetype. Fixed by changing a variable type from short to unsigned short and checking if a length variable exceeds permitted limit. Fixed in ghostpdl-10.05.0...

9.8CVSS7.9AI score0.00579EPSS
Exploits0
OSV
OSV
added 2025/03/15 1:40 a.m.14 views

MGASA-2025-0098 Updated ghostscript packages fix security vulnerabilities

This release addresses CVEs: CVE-2025-27835, CVE-2025-27832, CVE-2025-27831, CVE-2025-27836, CVE-2025-27830, CVE-2025-27833, CVE-2025-27837, CVE-2025-27834 The 10.05.0 release deprecates the non-standard operator "selectdevice", all code should now be using the standard "setpagedevice" operator...

9.8CVSS7.1AI score0.00806EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/01/14 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1055)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.01425EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/01/14 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1021)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.01425EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/24 12:0 a.m.17 views

Debian dla-3965 : ghostscript - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3965 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3965-1 [email protected]...

7.8CVSS6.8AI score0.00388EPSS
Exploits0References10
OSV
OSV
added 2024/11/22 2:23 p.m.3 views

OESA-2024-2455 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and...

5.4CVSS7.5AI score0.00717EPSS
Exploits0References2
OSV
OSV
added 2024/11/15 12:20 p.m.2 views

OESA-2024-2413 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: VUL-0: CVE-2024-46955: ghostscript: Out of bounds read when reading color in "Indexed" color spaceCVE-2024-46955...

5.5CVSS7AI score0.00296EPSS
Exploits0References2
OSV
OSV
added 2024/11/08 3:7 p.m.2 views

OESA-2024-2358 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: VUL-0: CVE-2024-46951: ghostscript: Arbitrary code execution via unchecked "Implementation" pointer in "Pattern"...

8.4CVSS8AI score0.00356EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2024/09/03 12:0 a.m.322 views

ghostscript security update

9.54.0-17 - RHEL-44759 CVE-2024-33870 ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths - RHEL-44745 CVE-2024-33869 ghostscript: path traversal and command execution due to path reduction - RHEL-44731 CVE-2024-29510 ghostscript: format string...

6.3CVSS6.8AI score0.27992EPSS
Exploits6
Amazon
Amazon
added 2024/08/06 12:0 a.m.5 views

Medium: ghostscript

Issue Overview: NOTE: https://ghostscript.readthedocs.io/en/gs10.03.1/News.html NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=5ae2e320d69a7d0973011796bd388cd5befa1a43 ghostpdl-10.03.1 NOTE:...

6.3CVSS7AI score0.00515EPSS
Exploits0
Amazon
Amazon
added 2024/07/22 12:0 a.m.7 views

Important: ghostscript

Issue Overview: NOTE: https://ghostscript.readthedocs.io/en/gs10.03.1/News.html NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=3b1735085ecef20b29e8db3416ab36de93e86d1f ghostpdl-10.03.1 NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707662 ADVISORIES: 'DSA-5692-1'...

6.3CVSS7.2AI score0.27992EPSS
Exploits6
Amazon
Amazon
added 2024/06/14 12:0 a.m.10 views

Important: ghostscript

Issue Overview: NOTE: https://ghostscript.readthedocs.io/en/gs10.03.1/News.html NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=7145885041bb52cc23964f0aa2aec1b1c82b5908 ghostpdl-10.03.1 NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707754 CVE-2024-33871 Affected...

8.8CVSS7.2AI score0.01425EPSS
Exploits0
OSV
OSV
added 2024/05/16 5:29 p.m.10 views

MGASA-2024-0180 Updated ghostscript packages fix security vulnerability

An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard. CVE-2023-52722...

5.5CVSS8.6AI score0.0033EPSS
Exploits0References4
OSV
OSV
added 2024/05/09 11:17 a.m.8 views

SUSE-SU-2024:1568-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2023-52722: Do not allow eexec seeds other than the Type 1 standard while using SAFER mode bsc1223852...

5.5CVSS5.5AI score0.0033EPSS
Exploits0References3
OSV
OSV
added 2023/08/28 5:27 a.m.9 views

SUSE-SU-2023:3438-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2023-38559: Fixed out-of-bounds read in devnpcxwriterle that could result in DoS bsc1213637...

5.5CVSS5.7AI score0.00447EPSS
Exploits0References3
OSV
OSV
added 2023/04/07 12:28 p.m.5 views

SUSE-SU-2023:1797-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2023-28879: Fixed buffer Overflow in sxBCPEprocess bsc1210062...

9.8CVSS9.6AI score0.06341EPSS
Exploits1References3
OSV
OSV
added 2021/09/21 2:30 p.m.8 views

SUSE-SU-2021:3180-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection bsc1190381...

9.9CVSS9.8AI score0.83913EPSS
Exploits0References3
Rows per page
Query Builder