OSV-2020-1883

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ghostscript/OSV-2020-1883.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-1883

Published

2020-09-29T00:00:42.068335Z

Modified

2022-04-13T03:04:34.340369Z

Summary

Use-of-uninitialized-value in s_exD_process

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22225

Crash type: Use-of-uninitialized-value
Crash state:
s_exD_process
sreadbuf
s_process_read_buf

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22225

Affected packages

OSS-Fuzz / ghostscript

Package

Name: ghostscript
Purl: pkg:generic/ghostscript

Affected ranges

Type: GIT
Repo: git://git.ghostscript.com/ghostpdl.git
Events: Introduced

668917a10e7eada030f7d2dddec9f579fddeed3d

Fixed

825d6807a72b68a2faf11fc37f89b1b75967d727

Affected versions

ghostpdl-9.*

ghostpdl-9.52-test-base-3

ghostpdl-9.52-test-base-4

ghostpdl-9.52-test-base-5

ghostpdl-9.52-test-base-6

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:668917a10e7eada030f7d2dddec9f579fddeed3d",
    "fixed_range": "d68f56e25110ba3baf03553c2d1839febc02dbdb:825d6807a72b68a2faf11fc37f89b1b75967d727"
}