5485 matches found
SUSE: Security Advisory (SUSE-SU-2023:3938-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:3938-1 Security update for ghostscript
This update for ghostscript fixes the following issues: - CVE-2023-43115: Fixed remote code execution via crafted PostScript documents in gdevijs.c b sc1215466...
Important: ghostscript
Issue Overview: In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS...
Medium: ghostscript
Issue Overview: A buffer overflow vulnerability in pcxwriterle in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. CVE-2020-16305 Affected Packages: ghostscript Issue Correction:...
Amazon Linux 2023 : ghostscript, ghostscript-gtk, ghostscript-tools-dvipdf (ALAS2023-2023-362)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-362 advisory. In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer...
Medium: ghostscript
Issue Overview: A divide by zero issue discovered in epsprintpage in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote attackers to cause a denial of service via opening of crafted PDF file. CVE-2020-21710 Affected Packages: ghostscript Issue Correction: Run yum update ghostscript or...
CVE-2023-43115
A vulnerability was found in Artifex Ghostscript in gdevijs.c, allows a malicious remote attacker to perform remote code execution via crafted PostScript documents...
Debian: Security Advisory (DLA-3582-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3582-1] ghostscript security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3582-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA September 25, 2023 https://wiki.debian.org/LTS -...
DLA-3582-1 ghostscript - security update
Bulletin has no description...
Amazon Linux AMI : ghostscript (ALAS-2023-1835)
The version of ghostscript installed on the remote host is prior to 8.70-24.30. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1835 advisory. Buffer Overflow vulnerability in cljmediasize function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attacke...
Debian dla-3582 : ghostscript - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3582 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3582-1 [email protected]...
Important: ghostscript
Issue Overview: Buffer Overflow vulnerability in cljmediasize function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attackers to cause a denial of service or other unspecified impacts via opening of crafted PDF document. CVE-2020-21890 Affected Packages: ghostscript Issue...
Amazon Linux 2 : ghostscript (ALAS-2023-2261)
The version of ghostscript installed on the remote host is prior to 9.25-5. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2261 advisory. A buffer overflow vulnerability in pcxwriterle in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remo...
Amazon Linux 2 : ghostscript (ALAS-2023-2258)
The version of ghostscript installed on the remote host is prior to 9.25-5. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2258 advisory. Buffer Overflow vulnerability in cljmediasize function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attackers ...
Medium: ghostscript
Issue Overview: A buffer overflow vulnerability in pcxwriterle in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. CVE-2020-16305 Affected Packages: ghostscript Note: This advisor...
SUSE CVE-2023-43115
In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be...
Artifex Ghostscript < 10.2.0 Buffer Overflow
A buffer overflow vulnerability exists in Artifex Ghostscript prior to 10.2.0 due to a flaw found in base/gdevdevn.c:1973 in devnpcxwriterle. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file for a DEVN device with gs. Note that Nessus has not...
ALPINE-CVE-2023-43115
In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be...
CVE-2023-43115 vulnerabilities
Vulnerabilities for packages: ghostscript...