Описание
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 9.19~dfsg+1-0ubuntu7.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [9.10~dfsg-0ubuntu10.5]] |
| esm-infra/xenial | released | 9.18~dfsg~0-0ubuntu2.2 |
| precise | released | 9.05~dfsg-0ubuntu4.4 |
| trusty | released | 9.10~dfsg-0ubuntu10.5 |
| trusty/esm | DNE | trusty was released [9.10~dfsg-0ubuntu10.5] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 9.18~dfsg~0-0ubuntu2.2 |
Показывать по
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.
Ghostscript before 9.21 might allow remote attackers to bypass the SAF ...
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3