[SECURITY] [DLA 3582-1] ghostscript security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3582-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA September 25, 2023 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 3381-1] ghostscript security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3381-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 04, 2023 https://wiki.debian.org/LTS -...

Debian: Security Advisory (DLA-3096-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 8 : ghostscript (RHSA-2021:1852)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1852 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap...

Artifex Ghostscript < 9.27 PostScript Security Bypass Vulnerability

The version of Artifex Ghostscript installed on the remote Windows host is prior to 9.27. It is, therefore, affected by a security bypass vulnerability due to some privileged operators remained accessible from various places after the CVE-2019-6116 fix. An authenticated, remote attacker can explo...

DEBIAN-CVE-2019-3839

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

CVE-2019-3839

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

ALPINE-CVE-2019-3835

It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

Newsfeed prompt can cause Opera to execute arbitrary code – Opera Security Advisories

Newsfeed prompt can cause Opera to execute arbitrary code – Opera Security Advisories OPCOM Team | December 16, 2008 Severity Highly Severe Problem Description When Opera encounters a newsfeed source on a Web page, it prompts to add the source as a newsfeed. A script can manipulate the feed sourc...

Opera: Multiple vulnerabilities

Background Opera is a fast web browser that is available free of charge. Description Michal Zalewski reported two vulnerabilities, memory corruption when adding news feed sources from a website CVE-2008-1761 as well as when processing HTML CANVAS elements to use scaled images CVE-2008-1762...

Opera Web Browser 9.26 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/28585/info Opera Web Browser is prone to multiple security vulnerabilities that may allow remote attackers to execute code. These issues lead to memory corruption and may result in remote unauthorized access and denial-of-service attacks. Versions prior t...