Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-10317

Опубликовано: 03 апр. 2017
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.8

Описание

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document.

РелизСтатусПримечание
artful

released

9.21~dfsg+1-0ubuntu3.1
bionic

released

9.22~dfsg+1-0ubuntu1.1
devel

not-affected

9.22~dfsg+1-0ubuntu1.1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [9.10~dfsg-0ubuntu10.12]]
esm-infra/bionic

released

9.22~dfsg+1-0ubuntu1.1
esm-infra/xenial

released

9.18~dfsg~0-0ubuntu2.8
precise

ignored

end of life
precise/esm

DNE

precise was deferred [2018-01-22]
trusty

released

9.10~dfsg-0ubuntu10.12
trusty/esm

DNE

trusty was released [9.10~dfsg-0ubuntu10.12]

Показывать по

Ссылки на источники

EPSS

Процентиль: 74%
0.0081
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-10317

CVSS3: 5.3
redhat
около 9 лет назад

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document.

nvd логотип

CVE-2016-10317

CVSS3: 7.8
nvd
почти 9 лет назад

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document.

debian логотип

CVE-2016-10317

CVSS3: 7.8
debian
почти 9 лет назад

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex S ...

github логотип

GHSA-vwwf-pc5c-f9gm

CVSS3: 7.8
github
больше 3 лет назад

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document.

fstec логотип

BDU:2019-03986

CVSS3: 5.6
fstec
почти 9 лет назад

Уязвимость функции fill_threshhold_buffer (base/gxht_thresh.c) набора программного обеспечения для обработки, преобразования и генерации документов Ghostscript, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

EPSS

Процентиль: 74%
0.0081
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3