OSV-2022-73

Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ghostscript/OSV-2022-73.yaml
Published
2022-01-22T00:00:41.413569Z
Modified
2022-09-22T00:25:35.842518Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43904

Crash type: Heap-use-after-free READ 8
Crash state:
pdfi_cspace_free_callback
gs_cspace_final
alloc_restore_step_in
References

Affected packages

OSS-Fuzz / ghostscript

ghostscript

Affected ranges

Type
GIT
Events
Introduced
82b097fe8e76ea92f69ef483f45c0cf491a98d43

Affected versions

ghostpdl-10.*

ghostpdl-10.0.0
ghostpdl-10.0.0_release_tests_001
ghostpdl-10.0.0_release_tests_002
ghostpdl-10.0.0rc1
ghostpdl-10.0.0rc2

ghostpdl-9.*

ghostpdl-9.56.0
ghostpdl-9.56.0-test-base-3
ghostpdl-9.56.0-test-base-4
ghostpdl-9.56.0-test-base-5
ghostpdl-9.56.0-test-base-6
ghostpdl-9.56.0rc1
ghostpdl-9.56.0rc1_release_tests_001
ghostpdl-9.56.0rc1_release_tests_002
ghostpdl-9.56.0rc2
ghostpdl-9.56.0rc2_release_tests_001
ghostpdl-9.56.1
ghostpdl-9.56.1_release_tests_001

Other

ken_20220210_baseline
robin-test-base-0

Ecosystem specific

{
    "severity": "HIGH"
}