[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

RHSA-2018:3650-01 -- Redhat ghostscript

ID: oval:org.secpod.oval:def:502540Date: (C)2018-11-27   (M)2023-12-20
Class: PATCHFamily: unix




The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix: * ghostscript: .tempfile file permission issues * ghostscript: shading_param incomplete type checking * ghostscript: missing type check in type checker * ghostscript: incorrect access checking in temp file handling to disclose contents of files For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Red Hat would like to thank Tavis Ormandy for reporting CVE-2018-15908.

Platform:
Red Hat Enterprise Linux 7
Product:
ghostscript
Reference:
RHSA-2018:3650-01
CVE-2018-15908
CVE-2018-15909
CVE-2018-16511
CVE-2018-16539
CVE    4
CVE-2018-16539
CVE-2018-15909
CVE-2018-15908
CVE-2018-16511
...
CPE    2
cpe:/o:redhat:enterprise_linux:7
cpe:/a:ghostscript:ghostscript

© SecPod Technologies