Astra Linux - уязвимость в ghostscript

Artifex Ghostscript before 10.03.0 has a stack-based buffer overflow in the pdfiapplyfilter function via a long PDF filter name...

OESA-2024-2458 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code...

OESA-2024-2457 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and...

OESA-2024-2456 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and...

OESA-2024-2455 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and...

OESA-2024-2454 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and...

The vulnerability of the psi/zfile.c component in the software suite for processing, transforming, and generating Ghostscript documents allows a perpetrator to execute arbitrary code.

The vulnerability of the psi/zfile.c component of the software for processing, transforming, and generating Ghostscript documents is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Fedora: Security Advisory (FEDORA-2024-b1877232ce)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability in the base/gsdevice.c component of the software for processing, transforming, and generating Ghostscript documents allows a perpetrator to execute arbitrary code.

The vulnerability in the base/gsdevice.c component of the software for processing, transforming, and generating Ghostscript documents is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

[SECURITY] Fedora 41 Update: ghostscript-10.03.1-4.fc41

This package provides useful conversion utilities based on Ghostscript softwa re, for converting PS, PDF and other document formats between each other. Ghostscript is a suite of software providing an interpreter for Adobe Systems' PostScript PS and Portable Document Format PDF page description...

Fedora 41 : ghostscript (2024-69af78a508)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-69af78a508 advisory. CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space fedora2325238 2325241 - CVE-2024-46952 CVE-2024-4695...

[SECURITY] Fedora 40 Update: ghostscript-10.02.1-13.fc40

This package provides useful conversion utilities based on Ghostscript softwa re, for converting PS, PDF and other document formats between each other. Ghostscript is a suite of software providing an interpreter for Adobe Systems' PostScript PS and Portable Document Format PDF page description...

Fedora 40 : ghostscript (2024-b1877232ce)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b1877232ce advisory. CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space fedora2325237 2325240 - CVE-2024-46952 CVE-2024-4695...

OESA-2024-2412 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: VUL-0: CVE-2024-46955: ghostscript: Out of bounds read when reading color in "Indexed" color spaceCVE-2024-46955...

OESA-2024-2413 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: VUL-0: CVE-2024-46955: ghostscript: Out of bounds read when reading color in "Indexed" color spaceCVE-2024-46955...

The vulnerability of the psi/zcolor.c component of the software suite for processing, transforming, and generating Ghostscript documents allows a hacker to trigger a service failure.

The vulnerability of the psi/zcolor.c component of the software suite for processing, transforming, and generating Ghostscript documents is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the psi/zcolor.c component of the Ghostscript software’s processing, conversion, and generation of documents allows a hacker to execute arbitrary code.

The vulnerability of the psi/zcolor.c component of the Ghostscript document processing, conversion, and generation interpreter relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Artifex Ghostscript < 10.04.0 Multiple Vulnerabilities

Multiple vulnerabilities exist in Artifex Ghostscript versions prior to 10.04.0. See vendor advisory for more details. - An issue was discovered in pdf/pdfxref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream related to W array values...

Ubuntu: Security Advisory (USN-7103-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-7103-1 ghostscript vulnerabilities

It was discovered that Ghostscript incorrectly handled parsing certain PS files. An attacker could use this issue to cause Ghostscript to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2024-46951, CVE-2024-46953, CVE-2024-46955, CVE-2024-46956 It was discovered...