RHEL 6 / 7 : ghostscript (RHSA-2017:1230)

An update for ghostscript is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Fedora Update for ghostscript FEDORA-2017-fae1506f94

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Scientific Linux Security Update : ghostscript on SL6.x, SL7.x i386/x86_64 (20170512)

Security Fixes : - It was found that ghostscript did not properly validate the parameters passed to the .rsdparams and .eqproc functions. During its execution, a specially crafted PostScript document could execute code in the context of the ghostscript process, bypassing the -dSAFER protection...

RedHat Update for ghostscript RHSA-2017:1230-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ghostscript: corruption of operand stack

It was found that ghostscript did not properly validate the parameters passed to the .rsdparams and .eqproc functions. During its execution, a specially crafted PostScript document could execute code in the context of the ghostscript process, bypassing the -dSAFER protection...

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2017-8908

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

DEBIAN-CVE-2017-8908

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

CVE-2017-8908

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

CVE-2017-8908

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

Out-of-bounds

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

CVE-2017-8908

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

CVE-2017-8908

CVE-2017-8908 is a Ghostscript vulnerability (affecting Ghostscript 9.21) where the mark_line_tr function in gxscanc.c can be triggered by a crafted PostScript document to cause an out-of-bounds read and denial of service. Public references in connected docs corroborate the issue as a Ghostscript...

CVE-2017-8908

The marklinetr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service out-of-bounds read via a crafted PostScript document...

ghostscript security update

8.70-23.el69.2 - Security fix for CVE-2017-8291 updated to address SIGSEGV 8.70-23.el69.1 - Added security fix for CVE-2017-8291 bug 1446063...

PT-2017-3936 · Artifex +3 · Artifex Ghostscript +3

Name of the Vulnerable Software and Affected Versions: Artifex Ghostscript versions prior to 9.24 Description: The issue is related to the .setdistillerkeys PostScript command, which is accepted even though it is not intended for use during document processing. This leads to memory corruption,...

openSUSE: Security Advisory for ghostscript (openSUSE-SU-2017:1203-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : ghostscript (openSUSE-2017-558)

This update for ghostscript fixes the following security vulnerabilities : CVE-2017-8291: A remote command execution and a -dSAFER bypass via a crafted .eps document were exploited in the wild. bsc1036453 CVE-2016-9601: An integer overflow in the bundled jbig2dec library could have been misused t...

Security update for ghostscript (important)

This update for ghostscript fixes the following security vulnerabilities: CVE-2017-8291: A remote command execution and a -dSAFER bypass via a crafted .eps document were exploited in the wild. bsc1036453 CVE-2016-9601: An integer overflow in the bundled jbig2dec library could have been misused to...

[SECURITY] Fedora 26 Update: ghostscript-9.20-10.fc26

Ghostscript is a set of software that provides a PostScript interpreter, a set of C procedures the Ghostscript library, which implements the graphics capabilities in the PostScript language and an interpreter for Portable Document Format PDF files. Ghostscript translates PostScript code into many...