CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-5951 – Debian Security Advisory 3838-1
https://notcve.org/view.php?id=CVE-2017-5951
03 Apr 2017 — The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. La función mem_get_bits_rectangle en base/gdevmem.c en Artifex Software, Inc. Ghostscript 9.20 permite a atacantes remotos provocar una denegación de servicio (referencia al puntero NULL y caída de la aplicación) a través de un archivo manipulado. It was discovered that Ghostscript improperly... • http://www.debian.org/security/2017/dsa-3838 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7207 – ghostscript: NULL pointer dereference in mem_get_bits_rectangle()
https://notcve.org/view.php?id=CVE-2017-7207
21 Mar 2017 — The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document. La función mem_get_bits_rectangle en Artifex Software, Inc. Ghostscript 9.20 permite a atacantes remotos provocar una denegación de servicio ( referencia puntero NULL) a través de un documento PostScript manipulado. A NULL pointer dereference flaw was found in ghostscript's mem_get_bits_rectangle function. • http://www.debian.org/security/2017/dsa-3838 • CWE-476: NULL Pointer Dereference •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2016-7976 – Gentoo Linux Security Advisory 201702-31
https://notcve.org/view.php?id=CVE-2016-7976
23 Feb 2017 — The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams. PS Interpreter en Ghostscript 9.18 y 9.20 permite que atacantes remotos ejecuten código arbitrario mediante parámetros de usuario manipulados. Multiple vulnerabilities have been found in GPL Ghostscript, the worst of which may allow execution of arbitrary code. Versions prior to 9.20-r1 are affected. • http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git%3Ba=commit%3Bh=6d444c273da5499a4cd72f21cb6d4c9a5256807d • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 8%CPEs: 1EXPL: 0CVE-2016-7978 – ghostscript: reference leak in .setdevice allows use-after-free and remote code execution
https://notcve.org/view.php?id=CVE-2016-7978
04 Jan 2017 — Use-after-free vulnerability in Ghostscript 9.20 might allow remote attackers to execute arbitrary code via vectors related to a reference leak in .setdevice. Vulnerabilidad de uso después de la liberación de Ghostscript 9.20 podría permitir a atacantes remotos ejecutar código arbitrario a través de vectores relacionados con una fuga de referencia en .setdevice. It was found that the ghostscript function .setdevice suffered a use-after-free vulnerability due to an incorrect reference count. A specially craf... • http://rhn.redhat.com/errata/RHSA-2017-0013.html • CWE-416: Use After Free •
CVSS: 9.8EPSS: 10%CPEs: 1EXPL: 0CVE-2016-7979 – ghostscript: Type confusion in .initialize_dsc_parser allows remote code execution
https://notcve.org/view.php?id=CVE-2016-7979
02 Dec 2016 — Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently execute arbitrary code by leveraging type confusion in .initialize_dsc_parser. Ghostscript versiones anteriores a 9.21 podría permitir que los atacantes remotos pasaran por alto el mecanismo de protección del modo SAFER y, en consecuencia, ejecutar código arbitrario mediante el aprovechamiento de la confusión de tipos en .initialize_dsc_parser. It was found that the ghostscript function .initi... • http://git.ghostscript.com/?p=ghostpdl.git%3Bh=875a0095f37626a721c7ff57d606a0f95af03913 • CWE-20: Improper Input Validation CWE-704: Incorrect Type Conversion or Cast •
CVSS: 7.8EPSS: 7%CPEs: 1EXPL: 0CVE-2016-8602 – ghostscript: check for sufficient params in .sethalftone5
https://notcve.org/view.php?id=CVE-2016-8602
02 Dec 2016 — The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Postscript document that calls .sethalftone5 with an empty operand stack. La función .sethalftone5 en psi/zht2.c en Ghostscript en versiones anteriores a 9.21 permite a los atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente ejecutar código arbitrario a través de un documento Pos... • http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=f5c7555c303 • CWE-20: Improper Input Validation CWE-704: Incorrect Type Conversion or Cast •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7977 – ghostscript: .libfile does not honor -dSAFER
https://notcve.org/view.php?id=CVE-2016-7977
02 Dec 2016 — Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document. Ghostscript anterior a la versión 9.21 podría permitir que los atacantes remotos eludieran el mecanismo de protección del modo SAFER y, en consecuencia, leyeran archivos arbitrarios mediante el uso del operador .libfile en un documento Postscript manipulado. It was found that ghostscript function .libfi... • http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=8abd22010eb4db0fb1b10e430d5f5d83e015ef70 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4820 – ghostscript: CWD included in the default library search path
https://notcve.org/view.php?id=CVE-2010-4820
27 Oct 2014 — Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working directory, a different vulnerability than CVE-2010-2055. Vulnerabilidad no especificada en Ghostscript 8.62 permite a atacantes remotos ejecutar código PostScript arbitrario a través de un fichero troyano de la librería Postscript en Encoding/ bajo el directorio de trabajo actual, una vulnerabilidad diferente a CVE-2... • http://bugs.ghostscript.com/show_bug.cgi?id=691339 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 4%CPEs: 3EXPL: 0CVE-2012-4405 – argyllcms: Array index error leading to heap-based bufer OOB write
https://notcve.org/view.php?id=CVE-2012-4405
18 Sep 2012 — Multiple integer underflows in the icmLut_allocate function in International Color Consortium (ICC) Format library (icclib), as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) PostScript or (2) PDF file with embedded images, which triggers a heap-based buffer overflow. NOTE: this issue is also described as an array index error. Múltiples desbordamientos inferiores de enteros en la f... • http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00031.html • CWE-189: Numeric Errors CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 1%CPEs: 2EXPL: 1CVE-2009-4270 – Gentoo Linux Security Advisory 201412-17
https://notcve.org/view.php?id=CVE-2009-4270
21 Dec 2009 — Stack-based buffer overflow in the errprintf function in base/gsmisc.c in ghostscript 8.64 through 8.70 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file, as originally reported for debug logging code in gdevcups.c in the CUPS output driver. Desbordamiento de búfer basado en pila en la función errprintf en base/gsmisc.c en ghostscript v8.64 hasta v8.70 permite a atacantes remotos provocar una denegación de servicio (caída) y probablemente... • http://bugs.ghostscript.com/show_bug.cgi?id=690829 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •