OSV-2024-853

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ghostscript/OSV-2024-853.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2024-853
Published
2024-08-16T00:04:58.897243Z
Modified
2024-08-16T00:04:58.897595Z
Summary
UNKNOWN READ in chunk_free_object
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537729

Crash type: UNKNOWN READ
Crash state:
chunk_free_object
pdfi_interpret_content_stream
pdfi_page_render
References

Affected packages

OSS-Fuzz / ghostscript

Package

Name
ghostscript
Purl
pkg:generic/ghostscript

Affected ranges

Type
GIT
Repo
git://git.ghostscript.com/ghostpdl.git
Events
Introduced
bf0048d271aa6a4d9898997ada84cf89c197e791
Fixed
5f738726ebaa0b769bd016651d5f8c9ea9969f3e

Affected versions

ghostpdl-10.*

ghostpdl-10.04.0
ghostpdl-10.04.0rc1
ghostpdl-10.04.0rc1_test001
ghostpdl-10.04.0rc2_test001

Other

rjw-test3

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "introduced_range": "f6dc854531c7f591e8f6f60dac7a312c8acb2e6b:4c8ded763017611bb9479a027dc2cc1ae5fe01cb"
}