Lucene search
Veracode Vulnerability DatabaseVERACODE:19769HistoryMay 16, 2019 - 3:23 a.m.
Arbitrary Code Execution
2019-05-1603:23:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.005 Low
EPSS
Percentile
76.0%
Artifex Ghostscript is vulnerable to arbitrary code execution. This is because artifex ghoscript allows an user-writable error exception table. An attacker could use this flaw to supply crafted PostScript to potentially overwrite or replace error handlers to inject code.
References
git.ghostscript.com/?p=ghostpdl.git;a=commit;h=fb713b3818b52d8a6cf62c951eba2e1795ff9624
access.redhat.com/errata/RHSA-2018:3834
access.redhat.com/security/updates/classification/#important
bugs.ghostscript.com/show_bug.cgi?id=699708
bugzilla.redhat.com/show_bug.cgi?id=1657822
lists.debian.org/debian-lts-announce/2018/09/msg00038.html
usn.ubuntu.com/3773-1/
Related
prion
prion
Code injection
2018-09-19 15:29:00
Code injection
2018-10-15 16:29:00
cve
cve
CVE-2018-17183
2018-09-19 15:29:19
CVE-2018-17961
2018-10-15 16:29:02
ubuntucve
ubuntucve
CVE-2018-17183
2018-09-19 00:00:00
CVE-2018-17961
2018-10-15 00:00:00
debiancve
debiancve
CVE-2018-17183
2018-09-19 15:29:19
CVE-2018-17961
2018-10-15 16:29:02
nvd
nvd
CVE-2018-17183
2018-09-19 15:29:19
CVE-2018-17961
2018-10-15 16:29:02
cvelist
cvelist
CVE-2018-17183
2018-09-19 15:00:00
CVE-2018-17961
2018-10-15 16:00:00
debian
debian
[SECURITY] [DLA 1527-1] ghostscript security update
2018-09-30 11:48:36
alpinelinux
alpinelinux
CVE-2018-17961
2018-10-15 16:29:02
osv
osv
CVE-2018-17961
2018-10-15 16:29:02
ghostscript - security update
2018-09-30 00:00:00
ghostscript - security update
2018-09-16 00:00:00
redhatcve
redhatcve
CVE-2018-17183
2018-09-24 21:19:33
CVE-2018-17961
2018-10-24 17:49:38
openvas
openvas
Debian: Security Advisory (DLA-1527-1)
2018-09-30 00:00:00
Ubuntu: Security Advisory (USN-3773-1)
2018-10-02 00:00:00
Debian: Security Advisory (DSA-4294-1)
2018-09-15 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Ghostscript vulnerabilities (USN-3773-1)
2018-10-02 00:00:00
SUSE SLED15 / SLES15 Security Update : ghostscript (SUSE-SU-2018:4087-1)
2019-01-02 00:00:00
openSUSE Security Update : ghostscript (openSUSE-2018-1552)
2018-12-17 00:00:00
ubuntu
ubuntu
Ghostscript vulnerabilities
2018-10-01 00:00:00
suse
suse
Security update for ghostscript (important)
2018-12-15 12:10:58
Security update for ghostscript (important)
2018-12-15 12:14:29
Security update for ghostscript (important)
2018-10-05 21:10:24
redhat
redhat
(RHSA-2018:3834) Important: ghostscript security and bug fix update
2018-12-17 18:48:48
centos
centos
ghostscript security update
2018-12-19 03:22:11
oraclelinux
oraclelinux
ghostscript security and bug fix update
2018-12-18 00:00:00
ghostscript security, bug fix, and enhancement update
2019-08-13 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: ghostscript-9.26-1.fc29
2019-02-12 02:58:39
[SECURITY] Fedora 28 Update: ghostscript-9.26-1.fc28
2019-02-18 01:27:21
amazon
amazon
Important: ghostscript
2021-02-17 00:58:00