Artifex

Ghostscript

129 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2017-7948

Exploit
  • EPSS 0.23%
  • Published 19.04.2017 14:59:00
  • Last modified 20.04.2025 01:37:25

Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via a crafted PostScript document.

7.8

CVE-2016-8602

  • EPSS 0.46%
  • Published 14.04.2017 18:59:00
  • Last modified 20.04.2025 01:37:25

The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Postscript document that calls .sethalftone5 with an empty o...

7.8

CVE-2016-10317

Exploit
  • EPSS 0.95%
  • Published 03.04.2017 20:59:00
  • Last modified 20.04.2025 01:37:25

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via...

5.5

CVE-2016-10217

Exploit
  • EPSS 0.76%
  • Published 03.04.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted file that is mishandled in the color management module.

5.5

CVE-2016-10218

Exploit
  • EPSS 0.39%
  • Published 03.04.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

The pdf14_pop_transparency_group function in base/gdevp14.c in the PDF Transparency module in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ...

5.5

CVE-2016-10219

Exploit
  • EPSS 0.98%
  • Published 03.04.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.

5.5

CVE-2016-10220

Exploit
  • EPSS 0.98%
  • Published 03.04.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF T...

5.5

CVE-2017-5951

Exploit
  • EPSS 0.86%
  • Published 03.04.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

5.5

CVE-2017-7207

  • EPSS 0.55%
  • Published 21.03.2017 06:59:00
  • Last modified 20.04.2025 01:37:25

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.