Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-27792

Опубликовано: 19 авг. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 7.1

Описание

A heap-based buffer overwrite vulnerability was found in GhostScript's lp8000_print_page() function in the gdevlp8k.c file. This flaw allows an attacker to trick a user into opening a crafted PDF file, triggering the heap buffer overflow that could lead to memory corruption or a denial of service.

РелизСтатусПримечание
bionic

released

9.26~dfsg+0-0ubuntu0.18.04.17
devel

not-affected

esm-infra/bionic

released

9.26~dfsg+0-0ubuntu0.18.04.17
esm-infra/focal

released

9.50~dfsg-5ubuntu4.6
esm-infra/xenial

released

9.26~dfsg+0-0ubuntu0.16.04.14+esm4
focal

released

9.50~dfsg-5ubuntu4.6
jammy

not-affected

9.55.0~dfsg1-0ubuntu5
kinetic

not-affected

trusty

ignored

end of standard support
upstream

released

9.51~dfsg-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 14%
0.00045
Низкий

7.1 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-27792

CVSS3: 7.1
redhat
почти 6 лет назад

A heap-based buffer overwrite vulnerability was found in GhostScript's lp8000_print_page() function in the gdevlp8k.c file. This flaw allows an attacker to trick a user into opening a crafted PDF file, triggering the heap buffer overflow that could lead to memory corruption or a denial of service.

nvd логотип

CVE-2020-27792

CVSS3: 7.1
nvd
около 3 лет назад

A heap-based buffer overwrite vulnerability was found in GhostScript's lp8000_print_page() function in the gdevlp8k.c file. This flaw allows an attacker to trick a user into opening a crafted PDF file, triggering the heap buffer overflow that could lead to memory corruption or a denial of service.

debian логотип

CVE-2020-27792

CVSS3: 7.1
debian
около 3 лет назад

A heap-based buffer overwrite vulnerability was found in GhostScript's ...

github логотип

GHSA-7h9w-vh8m-rj5g

CVSS3: 7.1
github
около 3 лет назад

A heap-based buffer over write vulnerability was found in GhostScript's lp8000_print_page() function in gdevlp8k.c file. An attacker could trick a user to open a crafted PDF file, triggering the heap buffer overflow that could lead to memory corruption or a denial of service.

fstec логотип

BDU:2023-09076

CVSS3: 7.1
fstec
почти 6 лет назад

Уязвимость функции lp8000_print_page() компонента gdevlp8k.c набора программного обеспечения обработки документов Ghostscript, позволяющая нарушителю нарушить целостность данных, а также вызвать отказ в обслуживании

EPSS

Процентиль: 14%
0.00045
Низкий

7.1 High

CVSS3