Lucene search

Ubuntu.comUB:CVE-2020-36773

HistoryFeb 04, 2024 - 12:00 a.m.

CVE-2020-36773

2024-02-0400:00:00

ubuntu.com

artifex ghostscript

out-of-bounds write

use-after-free

improper handling

character codes

pdf documents

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.1%

JSON

Artifex Ghostscript before 9.53.0 has an out-of-bounds write and
use-after-free in devices/vector/gdevtxtw.c (for txtwrite) because a single
character code in a PDF document can map to more than one Unicode code
point (e.g., for a ligature).

Bugs

Notes

Author	Note
mdeslaur	This issue was introduced in 9.51 as described in the patch. The reproducer doesn’t work on focal.

References

github.com/ArtifexSoftware/ghostpdl-downloads/releases/tag/gs9530

launchpad.net/bugs/cve/CVE-2020-36773

nvd.nist.gov/vuln/detail/CVE-2020-36773

security-tracker.debian.org/tracker/CVE-2020-36773

www.cve.org/CVERecord?id=CVE-2020-36773

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.1%

JSON

Related for UB:CVE-2020-36773