OSV-2025-63

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ghostscript/OSV-2025-63.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-63
Published
2025-01-27T00:10:00.833706Z
Modified
2025-01-27T00:10:00.834151Z
Summary
Stack-buffer-underflow in gs_type1_interpret
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=391934080

Crash type: Stack-buffer-underflow READ 4
Crash state:
gs_type1_interpret
copied_type1_glyph_outline
gs_default_glyph_info
References

Affected packages

OSS-Fuzz / ghostscript

Package

Name
ghostscript
Purl
pkg:generic/ghostscript

Affected ranges

Type
GIT
Repo
git://git.ghostscript.com/ghostpdl.git
Events
Introduced
171b0c9a4c04aba37e9638e356865df61b108655
Fixed
329fa492271566a43f905edafb83dbce1b01a62a

Affected versions

ghostpdl-10.*

ghostpdl-10.03.0
ghostpdl-10.03.0_test001
ghostpdl-10.03.0_test002
ghostpdl-10.03.0rc1
ghostpdl-10.03.0rc1_test
ghostpdl-10.03.0rc1_test002
ghostpdl-10.03.0rc1_test003
ghostpdl-10.03.1
ghostpdl-10.04.0
ghostpdl-10.04.0rc1
ghostpdl-10.04.0rc1_test001
ghostpdl-10.04.0rc2_test001
ghostpdl-10.05.0-test-base-001

Other

rjw-test3
robin_test_ref

Ecosystem specific

{
    "severity": null
}

Database specific

{
    "introduced_range": "3309730414735646e951e82a56e4a1a43f0365e1:cdf2135c66af36096181bbd1154c78d5bb72d7f0"
}