Denial Of Service (DoS)

ghostscript is vulnerable to Denial Of Service DoS. A divide-by-zero vulnerability in the epsprintpage function in gdevepsn.c allows a local attacker to cause a denial of service by opening a specially crafted PDF document...

Buffer Overflow

ghostscript is vulnerable to Buffer Overflows. A buffer overflow vulnerability in the cljmediasize function in devices/gdevclj.c allows a remote attacker to cause a denial of service or potentially execute arbitrary code by opening a specially crafted PDF document...

ghostscript security update

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Ghostscript suite contains utilities for rendering PostScript and PDF...

RLSA-2023:5459 Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: vulnerable to OS command injection due to mishandles permission validatio...

SUSE: Security Advisory (SUSE-SU-2023:3984-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ghostscript (SUSE-SU-2023:3984-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3984-1 advisory. - In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via...

Amazon Linux AMI : ghostscript (ALAS-2023-1853)

The version of ghostscript installed on the remote host is prior to 8.70-24.32. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1853 advisory. A divide by zero issue discovered in epsprintpage in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote attackers ...

Rocky Linux 9 : ghostscript (RLSA-2023:5459)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:5459 advisory. - Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices with the %pipe% prefix or the | pipe character prefix. CVE-2023-36664 Not...

ghostscript security update

9.54.0-10 - fix for CVE-2023-36664 - Resolves: rhbz2217798...

Amazon Linux AMI : ghostscript (ALAS-2023-1854)

The version of ghostscript installed on the remote host is prior to 8.70-24.31. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1854 advisory. A buffer overflow vulnerability in pcxwriterle in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a...

Oracle Linux 9 : ghostscript (ELSA-2023-5459)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-5459 advisory. - fix for CVE-2023-36664 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...

AlmaLinux 9 : ghostscript (ALSA-2023:5459)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:5459 advisory. - Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices with the %pipe% prefix or the | pipe character prefix. CVE-2023-36664 Note...

ghostscript: vulnerable to OS command injection due to mishandles permission validation for pipe devices

A vulnerability was found in Ghostscript. This flaw occurs due to a mishandled permission validation for pipe devices with the %pipe% prefix or the | pipe character prefix...

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

SUSE-SU-2023:3984-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2023-43115: Fixed remote code execution via crafted PostScript documents in gdevijs.c bsc1215466...

Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: vulnerable to OS command injection due to mishandles permission validatio...

ALSA-2023:5459 Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: vulnerable to OS command injection due to mishandles permission validatio...

The vulnerability of the gdevijs.c component of the Ghostscript document processing software allows a hacker to execute arbitrary code.

The vulnerability of the gdevijs.c component in the Ghostscript document processing software lies in improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

RHEL 9 : ghostscript (RHSA-2023:5459)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:5459 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

SUSE SLES12 Security Update : ghostscript (SUSE-SU-2023:3938-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3938-1 advisory. - In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because...