Lucene search
UbuntuUSN-6433-1HistoryOct 17, 2023 - 12:00 a.m.
Ghostscript vulnerability
2023-10-1700:00:00
ubuntu.com
46
ghostscript
pdf
ubuntu
vulnerability
code execution
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.006
Percentile
78.8%
Releases
- Ubuntu 23.10
- Ubuntu 23.04
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- ghostscript - PostScript and PDF interpreter
Details
It was discovered that Ghostscript incorrectly handled certain PDF
documents. If a user or automated system were tricked into opening a
specially crafted PDF file, a remote attacker could use this issue to
execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | ghostscript | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | ghostscript-dbgsym | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | ghostscript-doc | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | ghostscript-x | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgs-common | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgs-dev | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgs10 | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgs10-common | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgs10-dbgsym | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libgs9-common | < 10.01.2~dfsg1-0ubuntu2.1 | UNKNOWN |
References
Related
nessus
nessus
AlmaLinux 9 : ghostscript (ALSA-2023:6265)
2023-11-03 00:00:00
RHEL 9 : ghostscript (RHSA-2023:5868)
2023-10-19 00:00:00
RHEL 9 : ghostscript (RHSA-2023:6732)
2023-11-07 00:00:00
openvas
openvas
Fedora: Security Advisory (FEDORA-2023-c2665a9ff3)
2023-10-17 00:00:00
Fedora: Security Advisory for ghostscript (FEDORA-2023-66d60c3df7)
2023-10-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3938-1)
2023-10-04 00:00:00
redhat
redhat
(RHSA-2023:6732) Important: ghostscript security update
2023-11-07 09:44:55
(RHSA-2023:5868) Important: ghostscript security update
2023-10-18 22:00:17
(RHSA-2023:6265) Important: ghostscript security update
2023-11-02 09:15:53
cvelist
cvelist
CVE-2023-43115
2023-09-18 00:00:00
debiancve
debiancve
CVE-2023-43115
2023-09-18 08:15:07
mageia
mageia
Updated ghostscript packages fix security vulnerability
2023-10-19 19:11:51
cgr
cgr
CVE-2023-43115 vulnerabilities
2024-05-19 03:07:16
oraclelinux
oraclelinux
ghostscript security update
2023-11-16 00:00:00
ghostscript security update
2023-11-03 00:00:00
osv
osv
Important: ghostscript security update
2023-11-02 00:00:00
CVE-2023-43115
2023-09-18 08:15:07
ghostscript vulnerability
2023-10-17 11:40:37
nvd
nvd
CVE-2023-43115
2023-09-18 08:15:07
cve
cve
CVE-2023-43115
2023-09-18 08:15:07
fedora
fedora
[SECURITY] Fedora 38 Update: ghostscript-10.01.2-4.fc38
2023-10-15 01:44:26
[SECURITY] Fedora 39 Update: ghostscript-10.01.2-4.fc39
2023-10-16 15:27:49
almalinux
almalinux
Important: ghostscript security update
2023-11-02 00:00:00
Important: ghostscript security update
2023-11-07 00:00:00
alpinelinux
alpinelinux
CVE-2023-43115
2023-09-18 08:15:07
ubuntucve
ubuntucve
CVE-2023-43115
2023-09-18 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2023-10-08 05:37:24
redhatcve
redhatcve
CVE-2023-43115
2023-09-28 06:54:29
prion
prion
Remote code execution
2023-09-18 08:15:00
wolfi
wolfi
CVE-2023-43115 vulnerabilities
2024-09-27 09:13:12
githubexploit
githubexploit
Exploit for CVE-2023-43115
2023-09-28 17:30:06
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.006
Percentile
78.8%
Related for USN-6433-1