It was discovered that Ghostscript improperly handled parameters to the rsdparams and eqproc commands. An attacker could use these to craft a malicious document that could disable -dSAFER protections, thereby allowing the execution of arbitrary code, or cause a denial of service (application crash). (CVE-2017-8291)
Kamil Frankowicz discovered a use-after-free vulnerability in the color management module of Ghostscript. An attacker could use this to cause a denial of service (application crash). (CVE-2016-10217)
Kamil Frankowicz discovered a divide-by-zero error in the scan conversion code in Ghostscript. An attacker could use this to cause a denial of service (application crash). (CVE-2016-10219)
Kamil Frankowicz discovered multiple NULL pointer dereference errors in Ghostscript. An attacker could use these to cause a denial of service (application crash). (CVE-2016-10220, CVE-2017-5951, CVE-2017-7207)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "ghostscript" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "ghostscript-dbg" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "ghostscript-dbgsym" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "ghostscript-doc" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "ghostscript-x" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "ghostscript-x-dbgsym" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "libgs-dev" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "libgs-dev-dbgsym" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "libgs9" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "libgs9-common" }, { "binary_version": "9.10~dfsg-0ubuntu10.7", "binary_name": "libgs9-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "ghostscript" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "ghostscript-dbg" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "ghostscript-dbgsym" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "ghostscript-doc" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "ghostscript-x" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "ghostscript-x-dbgsym" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "libgs-dev" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "libgs-dev-dbgsym" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "libgs9" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "libgs9-common" }, { "binary_version": "9.18~dfsg~0-0ubuntu2.4", "binary_name": "libgs9-dbgsym" } ] }