Описание
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 9.22~dfsg+1-0ubuntu1.2 |
| devel | released | 9.25~dfsg+1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [9.10~dfsg-0ubuntu10.13]] |
| esm-infra/bionic | released | 9.22~dfsg+1-0ubuntu1.2 |
| esm-infra/xenial | released | 9.18~dfsg~0-0ubuntu2.9 |
| precise/esm | DNE | |
| trusty | released | 9.10~dfsg-0ubuntu10.13 |
| trusty/esm | DNE | trusty was released [9.10~dfsg-0ubuntu10.13] |
| upstream | needs-triage | |
| xenial | released | 9.18~dfsg~0-0ubuntu2.9 |
Показывать по
EPSS
9.3 Critical
CVSS2
7.8 High
CVSS3
Связанные уязвимости
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction.
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction.
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect ...
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction.
EPSS
9.3 Critical
CVSS2
7.8 High
CVSS3