RHEL 8 : ghostscript (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ghostscript: Mishandling of .completefont incomplete fix for CVE-2019-3839 CVE-2019-25059 - Ghostscript...

EulerOS Virtualization 3.0.2.0 : ghostscript (EulerOS-SA-2022-1693)

According to the versions of the ghostscript package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

EulerOS 2.0 SP9 : ghostscript (EulerOS-SA-2022-1426)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp. CVE-2021-459...

SUSE SLES15 Security Update : ghostscript (SUSE-SU-2022:0088-2)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0088-2 advisory. - CVE-2021-45944: Fixed use-after-free in sampleddatasample bsc1194303 - CVE-2021-45949: Fixed heap-based buffer overflow in sampleddatafinish...

Debian DLA-2879-1 : ghostscript - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2879 advisory. - Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp. CVE-2021-45944 - Ghostscript...

SUSE SLED15 / SLES15 Security Update : ghostscript (SUSE-SU-2022:0088-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0088-1 advisory. - CVE-2021-45944: Fixed use-after-free in sampleddatasample bsc1194303 - CVE-2021-45949: Fixed heap-based buff...

Use After Free

ghostscript is vulnerable to use after free. The vulnerability exists in the sampleddatasample called from sampleddatacontinue and interp...

The vulnerability in the implementation of the sampled_data_sample function within the software suite for processing, transforming, and generating Ghostscript documents allows a perpetrator to trigger a service failure.

The vulnerability of the implementation of the sampleddatasample function in the software for processing, transforming, and generating Ghostscript documents is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2021-45944

Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

CVE-2021-45944

Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

CVE-2021-45944

Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

CVE-2021-45944

Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

Design/Logic Flaw

Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

CVE-2021-45944

CVE-2021-45944 affects Ghostscript GhostPDL versions 9.50–9.53.3, with a use-after-free in sampled_data_sample (called from sampled_data_continue and interp). The vulnerability is described in the connected Astra/NVD entries for Ghostscript; the root cause is a use-after-free in the sampled_data_...

CVE-2021-45944

Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampleddatasample called from sampleddatacontinue and interp...

OSV-2021-337 Heap-use-after-free in sampled_data_sample

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30715 Crash type: Heap-use-after-free WRITE 4 Crash state: sampleddatasample sampleddatacontinue interp...