CVE-2017-7207

Опубликовано: 21 мар. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

Релиз	Статус	Примечание
devel	released	9.19~dfsg+1-0ubuntu8
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [9.10~dfsg-0ubuntu10.7]]
esm-infra/xenial	released	9.18~dfsg~0-0ubuntu2.4
precise	released	9.05~dfsg-0ubuntu4.5
precise/esm	DNE	precise was released [9.05~dfsg-0ubuntu4.5]
trusty	released	9.10~dfsg-0ubuntu10.7
trusty/esm	DNE	trusty was released [9.10~dfsg-0ubuntu10.7]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 67%

0.00547

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-7207

CVSS3: 3.3

redhat

больше 8 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

CVE-2017-7207

CVSS3: 5.5

nvd

больше 8 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

CVE-2017-7207

CVSS3: 5.5

debian

больше 8 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscr ...

GHSA-3g8x-c82p-r7gj

CVSS3: 5.5

github

больше 3 лет назад

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

ELSA-2017-2180

oracle-oval

больше 8 лет назад

ELSA-2017-2180: ghostscript security and bug fix update (LOW)

EPSS

Процентиль: 67%

0.00547

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-7207

Описание

Пакет ghostscript

Ссылки на источники

Связанные уязвимости