CVE-2017-7207

Опубликовано: 21 мар. 2017

Источник: debian

Описание

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
ghostscript	fixed	9.20~dfsg-3		package

Примечания

https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=309eca4e0a31ea70dcc844812691439312dad091
https://bugs.ghostscript.com/show_bug.cgi?id=697676

Связанные уязвимости

CVE-2017-7207

CVSS3: 5.5

ubuntu

больше 8 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

CVE-2017-7207

CVSS3: 3.3

redhat

больше 8 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

CVE-2017-7207

CVSS3: 5.5

nvd

больше 8 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

GHSA-3g8x-c82p-r7gj

CVSS3: 5.5

github

больше 3 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

ELSA-2017-2180

oracle-oval

больше 8 лет назад

ELSA-2017-2180: ghostscript security and bug fix update (LOW)