330 matches found
PT-2022-37183 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details include a crash state involving functions such as pdfi read cff dict and pdf...
CVE-2022-2085
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an initdeviceprocs defined for the device that uses it as a prototype that depends upon the number of bits per...
CVE-2022-2085
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an initdeviceprocs defined for the device that uses it as a prototype that depends upon the number of bits per...
CVE-2022-2085
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an initdeviceprocs defined for the device that uses it as a prototype that depends upon the number of bits per...
USN-5396-2 ghostscript vulnerability
USN-5396-1 addressed a vulnerability in Ghostscript. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a special...
Ubuntu 18.04 LTS : Ghostscript vulnerability (USN-5396-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5396-1 advisory. It was discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted...
DEBIAN-CVE-2019-25059
Artifex Ghostscript through 9.26 mishandles .completefont. NOTE: this issue exists because of an incomplete fix for CVE-2019-3839...
Vulnerabilities fixed in Ghostscript
Vulnerabilities have been fixed in Ghostscript. A malicious person could potentially exploit the vulnerability to cause a denial-of-service cause. To do this, a specially prepared PostScript file to be processed by the Ghostscript instance. Because Ghostscript is commonly used on print servers in...
CVE-2021-45944
Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...
SUSE SLED12 / SLES12 Security Update : ghostscript (SUSE-SU-2021:3180-1)
The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3180-1 advisory. - A trivial sandbox enabled with the -dSAFER option escape flaw was found in the ghostscript interpreter by injecting a specially...
USN-5075-1 ghostscript vulnerability
It was discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause a denial of service...
Vulnerability of the tiff12_print_page() function (device/gdevtfnx.c) in the software suite for processing, converting, and generating Ghostscript documents, allowing a hacker to trigger a service failure
The vulnerability of the tiff12printpage function device/gdevtfnx.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the epsc_print_page() function (device/gdevepsc.c) in the software suite for processing, transforming, and generating Ghostscript documents, allowing a hacker to trigger a service failure.
The vulnerability of the epscprintpage function device/gdevepsc.c in the software suite for processing, transforming, and generating Ghostscript documents is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the pj_common_print_page() function (device/gdevpjet.c) in the software suite for processing, transforming, and generating Ghostscript documents, related to buffer overflow, allows an attacker to trigger a service failure.
The vulnerability of the pjcommonprintpage function device/gdevpjet.c in the software suite for processing, transforming, and generating Ghostscript documents is related to buffer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
Vulnerability of the jetp3852_print_page() function (device/gdev3852.c) in the software suite for processing, transforming, and generating Ghostscript documents, allowing a hacker to trigger a service failure
The vulnerability of the jetp3852printpage function device/gdev3852.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the cljmedia_size() function (device/gdevclj.c) in the software suite for processing, transforming, and generating Ghostscript documents, allowing a hacker to trigger a service failure
The vulnerability of the cljmediasize function device/gdevclj.c in the software suite for processing, transforming, and generating Ghostscript documents is related to the use of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the GetNumWrongData() function (contrib/lips4/gdevlips.c) in the software suite for processing, converting, and generating Ghostscript documents allows a perpetrator to trigger a service failure.
The vulnerability of the GetNumWrongData function contrib/lips4/gdevlips.c in the software suite for processing, transforming, and generating Ghostscript documents is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause...
The vulnerability of the xps_finish_image_path() function (device/vector/gdevxps.c) in the software suite for processing, transforming, and generating Ghostscript documents allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the xpsfinishimagepath function device/vector/gdevxps.c in the software suite for processing, transforming, and generating Ghostscript documents is related to its use after release. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
Denial Of Service (DoS)
GhostScript is vulnerable to denial of service. An attacker is able to cause a denial of service via a crafted PDF file...
Buffer Overflow
GhostScript is vulnerable to buffer overflow. This vulnerability exists due to a buffer overflow in pjcommonprintpage in devices/gdevpjet.c which allows an attacker to cause a denial of service via a maliciously crafted PDF file...