7 matches found
CVE-2009-4897
Ghostscript (GPL Ghostscript) contains CVE-2009-4897: a buffer overflow in gs/psi/iscan.c can be triggered by a crafted PDF with a long name, enabling remote code execution or memory corruption. Affected: Ghostscript 8.64 and earlier. Exploitation via crafted PDFs; memory corruption could lead to...
CVE-2013-5653
CVE-2013-5653 affects Ghostscript and stems from the getenv and filenameforall functions not honoring -dSAFER, enabling an attacker to read environment variables or list directories via a crafted PostScript document. The issue is documented across multiple sources (e.g., NVD description and IBM P...
CVE-2015-3228
CVE-2015-3228 : Ghostscript 9.15 and earlier contains an integer overflow in gs_heap_alloc_bytes (base/gsmalloc.c) that can trigger an out-of-bounds read/write through a crafted PostScript file, as demonstrated via ps2pdf, causing denial of service (crash). Connected sources confirm the affected ...
CVE-2009-3743
Ghostscript prior to 8.71 is affected by an off-by-one error in the Ins_MINDEX function of the TrueType bytecode interpreter, allowing a remote attacker to execute arbitrary code or cause a denial of service via a malformed TrueType font (heap memory corruption). The issue (CVE-2009-3743) is cite...
CVE-2017-6196
CVE-2017-6196 is a Ghostscript vulnerability described in the Mageia advisory MGASA-2017-0430 and related OpenVAS/Fedora entries. It covers multiple use-after-free defects in the GX image enumeration path (base/gxipixel.c: gx_image_enum_begin) that may be exploitable via a crafted PostScript docu...
CVE-2010-2055
Ghostscript before 8.71 is vulnerable to an information/command execution flaw where initialization files are read from the current working directory, enabling local users to run arbitrary PostScript via a Trojan horse file. Affected: Ghostscript 8.71 and earlier. Impact: local code/command execu...
CVE-2010-4054
CVE-2010-4054 affects Ghostscript: the gs_type2_interpret function can be driven to crash via crafted font data in a compressed data stream (bug 691043), enabling a remote denial-of-service. Documented in MiracleLinux advisories and various OpenVAS/Nessus entries; patch/version details are not sp...