Описание
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 9.22~dfsg+1-0ubuntu1.2 |
| devel | released | 9.25~dfsg+1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [9.10~dfsg-0ubuntu10.13]] |
| esm-infra/bionic | released | 9.22~dfsg+1-0ubuntu1.2 |
| esm-infra/xenial | released | 9.18~dfsg~0-0ubuntu2.9 |
| precise/esm | DNE | |
| trusty | released | 9.10~dfsg-0ubuntu10.13 |
| trusty/esm | DNE | trusty was released [9.10~dfsg-0ubuntu10.13] |
| upstream | released | 9.22~dfsg-3 |
| xenial | released | 9.18~dfsg~0-0ubuntu2.9 |
Показывать по
EPSS
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact.
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact.
In Artifex Ghostscript before 9.24, attackers able to supply crafted P ...
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact.
Уязвимость встроенного конвертера PDF14 набора программного обеспечения для обработки, преобразования и генерации документов Ghostscript, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.8 Medium
CVSS2
7.8 High
CVSS3