16 matches found
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2024-2364)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : ghostscript (EulerOS-SA-2024-2436)
According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint...
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2024-2413)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : ghostscript (EulerOS-SA-2024-2389)
According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint...
EulerOS 2.0 SP9 : ghostscript (EulerOS-SA-2024-2364)
According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint...
EulerOS 2.0 SP10 : ghostscript (EulerOS-SA-2024-2413)
According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint...
Ghostscript Command Execution / Format String Exploit
This Metasploit module exploits a format string vulnerability in Ghostscript versions before 10.03.1 to achieve a SAFER sandbox bypass and execute arbitrary commands. This vulnerability is reachable via libraries such as ImageMagick. This exploit only works against Ghostscript versions 10.03.0 an...
CVE-2024-29510
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...
Artifex Ghostscript Formatting String Error Vulnerability
Artifex Ghostscript is a free software package from Artifex, Inc. based on Adobe, PostScript, and the Portable Document Format page description language. A security vulnerability exists in Artifex Ghostscript prior to version 10.03.1 that exploits a memory corruption and SAFER sandbox bypass that...
CVE-2024-29510
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...
CVE-2024-29510
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...
CVE-2024-29510
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device. Recent assessments: cdelafuente-r7 at August 13, 2024 10:25am UTC reported: Ghostscript is vulnerable to a critical format string vulnerability that affects...
FreeBSD : Ghostscript -- SAFER Sandbox Breakout (62642942-590f-11eb-a0dc-8c164582fbac)
SO-AND-SO reports : A memory corruption issue was found in Artifex Ghostscript 9.50 and 9.52. Use of a non-standard PostScript operator can allow overriding of file access controls. The 'rsearch' calculation for the 'post' size resulted in a size that was too large, and could underflow to max...
Security update for ghostscript (important)
openSUSE Security Update: Security update for ghostscript Announcement ID: openSUSE-SU-2020:1142-1 Rating: important References: 1174415 Cross-References: CVE-2020-15900 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
SUSE SLES12 Security Update : ghostscript (SUSE-SU-2020:2097-1)
This update for ghostscript fixes the following issues : fixed CVE-2020-15900 Memory Corruption SAFER Sandbox Breakout cf. https://bugs.ghostscript.com/showbug.cgi?id=702582 bsc1174415 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
SUSE SLED15 / SLES15 Security Update : ghostscript (SUSE-SU-2020:2095-1)
This update for ghostscript fixes the following issues : fixed CVE-2020-15900 Memory Corruption SAFER Sandbox Breakout cf. https://bugs.ghostscript.com/showbug.cgi?id=702582 bsc1174415 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...