Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2017:1203-1

Опубликовано: 08 мая 2017
Источник: suse-cvrf

Описание

Security update for ghostscript

This update for ghostscript fixes the following security vulnerabilities:

CVE-2017-8291: A remote command execution and a -dSAFER bypass via a crafted .eps document were exploited in the wild. (bsc#1036453)

CVE-2016-9601: An integer overflow in the bundled jbig2dec library could have been misused to cause a Denial-of-Service. (bsc#1018128)

CVE-2016-10220: A NULL pointer dereference in the PDF Transparency module allowed remote attackers to cause a Denial-of-Service. (bsc#1032120)

CVE-2017-5951: A NULL pointer dereference allowed remote attackers to cause a denial of service via a crafted PostScript document. (bsc#1032114)

CVE-2017-7207: A NULL pointer dereference allowed remote attackers to cause a denial of service via a crafted PostScript document. (bsc#1030263)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.1
ghostscript-9.15-11.3.1
ghostscript-devel-9.15-11.3.1
ghostscript-mini-9.15-11.3.1
ghostscript-mini-devel-9.15-11.3.1
ghostscript-x11-9.15-11.3.1
openSUSE Leap 42.2
ghostscript-9.15-11.3.1
ghostscript-devel-9.15-11.3.1
ghostscript-mini-9.15-11.3.1
ghostscript-mini-devel-9.15-11.3.1
ghostscript-x11-9.15-11.3.1

Ссылки

Описание

The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF Transparency module.

Затронутые продукты
openSUSE Leap 42.1:ghostscript-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-devel-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-devel-9.15-11.3.1
Ссылки

Описание

ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript.

Затронутые продукты
openSUSE Leap 42.1:ghostscript-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-devel-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-devel-9.15-11.3.1
Ссылки

Описание

The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

Затронутые продукты
openSUSE Leap 42.1:ghostscript-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-devel-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-devel-9.15-11.3.1
Ссылки

Описание

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

Затронутые продукты
openSUSE Leap 42.1:ghostscript-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-devel-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-devel-9.15-11.3.1
Ссылки

Описание

Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017.

Затронутые продукты
openSUSE Leap 42.1:ghostscript-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-devel-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-9.15-11.3.1
openSUSE Leap 42.1:ghostscript-mini-devel-9.15-11.3.1
Ссылки
Уязвимость openSUSE-SU-2017:1203-1