Описание
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 9.25~dfsg+1-0ubuntu0.18.04.2 |
| cosmic | released | 9.25~dfsg+1-0ubuntu1.1 |
| devel | released | 9.25~dfsg+1-0ubuntu1.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [9.25~dfsg+1-0ubuntu0.14.04.2]] |
| esm-infra/bionic | released | 9.25~dfsg+1-0ubuntu0.18.04.2 |
| esm-infra/xenial | released | 9.25~dfsg+1-0ubuntu0.16.04.2 |
| precise/esm | DNE | |
| trusty | released | 9.25~dfsg+1-0ubuntu0.14.04.2 |
| trusty/esm | DNE | trusty was released [9.25~dfsg+1-0ubuntu0.14.04.2] |
| upstream | needs-triage |
Показывать по
EPSS
6.8 Medium
CVSS2
8.6 High
CVSS3
Связанные уязвимости
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sand ...
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
Уязвимость процедуры 1Policy (обертка процедуры .forceput) набора программного обеспечения для обработки, преобразования и генерации документов Ghostscript, связанная с возможностью обхода среды для безопасного выполнения, позволяющая нарушителю выполнить произвольный код
EPSS
6.8 Medium
CVSS2
8.6 High
CVSS3