Описание
In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ghostscript | fixed | 10.06.0~dfsg-1 | package |
Примечания
https://bugs.ghostscript.com/show_bug.cgi?id=708819
https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=d12002b16c59e12d97f42fb2c70caded8b1b6aa8 (ghostpdl-10.06.0)
GhostXPS code not compiled
Связанные уязвимости
In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.
In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.
In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.
Уязвимость функции xps_unpredict_tiff интерпретатора для файлов XPS GhostXPS, позволяющая нарушителю оказать воздействие на целостность защищаемой информации