Download
| Alert*
|
oval:org.secpod.oval:def:89045353
This update for ghostscript-library fixes the following issues: - Multiple security vulnerabilities have been discovered where ghostscript"s -dsafer flag did not provide sufficient protection against unintended access to the file system. Thus, a machine that would process a specially crafted Postscr ... oval:org.secpod.oval:def:26777 The host is installed with Ghostscript 9.15 or earlier and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted postscript (.ps) file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:702687 ghostscript: PostScript and PDF interpreter Ghostscript could be made to crash or run programs if it processed a specially crafted file. oval:org.secpod.oval:def:52541 ghostscript: PostScript and PDF interpreter Ghostscript could be made to crash or run programs if it processed a specially crafted file. oval:org.secpod.oval:def:602184 William Robinet and Stefan Cornelius discovered an integer overflow in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service or potentially execution of arbitrary code if a specially crafted file is opened. |
