16 matches found
CVE-2013-6629
The CVE-2013-6629 issue affects libjpeg 6b and libjpeg-turbo up to 1.3.0, used by Chrome prior to 31.0.1650.48, Ghostscript, and other products. The vulnerability arises in get_sos() in jdmarker.c, which does not properly validate certain duplications of component data after SOS JPEG markers, all...
CVE-2018-16509
Ghostscript (Artifex) before 9.25 has an issue where /invalidaccess checks can fail, allowing crafted PostScript to bypass -dSAFER and execute code via the pipe instruction. Several advisories indicate this is a security flaw that could enable remote/unauthenticated code execution in Ghostscript ...
CVE-2018-15910
Artifex Ghostscript before 9.24 is affected by a type confusion in the LockDistillerParams parameter that can be triggered by crafted PostScript, potentially crashing the interpreter or enabling code execution. This CVE (CVE-2018-15910) is corroborated across multiple sources (vendor advisories a...
CVE-2018-18284
Ghostscript 9.25 and earlier is affected by CVE-2018-18284, where the sandbox protection can be bypassed via vectors involving the 1Policy operator. Affected component: Ghostscript interpreter; root cause: sandbox bypass in policy handling. Impact: sandbox escape via crafted PostScript; in the Ar...
CVE-2018-15909
CVE-2018-15909 affects Artifex Ghostscript 9.23 (pre-2018-08-24). A type confusion in the .shfill PostScript operator can be triggered by specially crafted PostScript data, allowing an attacker to crash the Ghostscript interpreter or potentially execute arbitrary code. The vulnerability is docume...
CVE-2018-15911
CVE-2018-15911 affects Artifex Ghostscript 9.23 prior to 2018-08-24. Attackers able to supply crafted PostScript can trigger uninitialized memory access in the aesdecode operator, potentially crashing the interpreter or executing code. Exploitation status is not detailed in the provided documents...
CVE-2018-16510
CVE-2018-16510 refers to Ghostscript before 9.24, where an issue in the PDF primitives CS and SC incorrectly handled the exec stack. This could allow remote attackers to crash the interpreter or cause unspecified other impact by supplying crafted PDFs. The connected advisories confirm remediation...
CVE-2009-4897
Ghostscript (GPL Ghostscript) contains CVE-2009-4897: a buffer overflow in gs/psi/iscan.c can be triggered by a crafted PDF with a long name, enabling remote code execution or memory corruption. Affected: Ghostscript 8.64 and earlier. Exploitation via crafted PDFs; memory corruption could lead to...
CVE-2018-16513
CVE-2018-16513 affects Artifex Ghostscript prior to 9.24. A crafted PostScript file can trigger a type confusion in the setcolor function, potentially crashing the Ghostscript interpreter or causing unspecified other impact. Mitigation documented across multiple sources is to upgrade Ghostscript ...
CVE-2016-9601
CVE-2016-9601 : Ghostscript before version 9.21 is vulnerable to a heap-based buffer overflow in the jbig2_decode_gray_scale_image function used for JBIG2 halftone decoding, potentially causing a segmentation fault when parsing a crafted PostScript/PDF with an embedded JBIG2 image, per multiple c...
CVE-2009-3743
Ghostscript prior to 8.71 is affected by an off-by-one error in the Ins_MINDEX function of the TrueType bytecode interpreter, allowing a remote attacker to execute arbitrary code or cause a denial of service via a malformed TrueType font (heap memory corruption). The issue (CVE-2009-3743) is cite...
CVE-2010-1628
CVE-2010-1628 affects GPL Ghostscript. Specifically, Ghostscript 8.64, 8.70 and possibly other versions are vulnerable to a context-dependent attacker who can trigger memory corruption in the interpreter stack via a PostScript file with unlimited recursive procedure invocations, potentially allow...
CVE-2010-1869
CVE-2010-1869 is a Ghostscript vulnerability affecting 8.64/8.70 where the parser’s stack-based buffer overflow could allow context-dependent attackers to execute arbitrary code via a crafted PostScript file. Public advisories (Ubuntu USN-961-1, Debian DSA-2080-1, openSUSE/SUSE updates, SUSE open...
CVE-2010-2055
Ghostscript before 8.71 is vulnerable to an information/command execution flaw where initialization files are read from the current working directory, enabling local users to run arbitrary PostScript via a Trojan horse file. Affected: Ghostscript 8.71 and earlier. Impact: local code/command execu...
CVE-2010-4054
CVE-2010-4054 affects Ghostscript: the gs_type2_interpret function can be driven to crash via crafted font data in a compressed data stream (bug 691043), enabling a remote denial-of-service. Documented in MiracleLinux advisories and various OpenVAS/Nessus entries; patch/version details are not sp...
CVE-2012-4875
Ghostscript 9.04 is affected by a heap-based buffer overflow in gdevwpr2.c when processing the OutputFile device parameter, enabling user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. The issue is documented as a potential vulnerability with th...