Showing 1 - 3 of 3

CVE-2017-9835

Status Candidate

Overview

The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document. This is related to a lack of an integer overflow check in base/gsalloc.c.

Related Files

Gentoo Linux Security Advisory 201811-12: Posted Nov 24, 2018; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201811-12 - Multiple vulnerabilities have been found in GPL Ghostscript, the worst of which could result in the execution of arbitrary code. Versions prior to 9.26 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2017-11714, CVE-2017-7948, CVE-2017-9610, CVE-2017-9611, CVE-2017-9612, CVE-2017-9618, CVE-2017-9619, CVE-2017-9620, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739, CVE-2017-9740, CVE-2017-9835, CVE-2018-10194, CVE-2018-15908, CVE-2018-15909, CVE-2018-15910, CVE-2018-15911, CVE-2018-16509, CVE-2018-16510, CVE-2018-16511, CVE-2018-16513, CVE-2018-16539, CVE-2018-16540, CVE-2018-16541, CVE-2018-16542, CVE-2018-16543; MD5 | f0a3d2703790af5e30aed7740e306f75; Download | Favorite | View

Debian Security Advisory 3986-1: Posted Oct 1, 2017; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3986-1 - Several vulnerabilities were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service if a specially crafted Postscript file is processed.; tags | advisory, denial of service, vulnerability; systems | linux, debian; advisories | CVE-2017-11714, CVE-2017-9611, CVE-2017-9612, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739, CVE-2017-9835; MD5 | 221f3b6b94f2d8d9d95d5e4648badf58; Download | Favorite | View

Ubuntu Security Notice USN-3403-1: Posted Aug 28, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3403-1 - Kamil Frankowicz discovered that Ghostscript mishandles references. A remote attacker could use this to cause a denial of service. Kim Gwan Yeong discovered that Ghostscript could allow a heap-based buffer over-read and application crash. A remote attacker could use a crafted document to cause a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2017-11714, CVE-2017-9612, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739, CVE-2017-9835; MD5 | 9208f40dc0fca6b20b8bd44ffe26dae8; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 66 files
Ubuntu 30 files
Gentoo 26 files
malvuln 26 files
Saeed Bala Ahmed 10 files
Jeremy Brown 7 files
SunCSR 6 files
Aakash Madaan 6 files
Mesut Cetin 6 files
1F98D 5 files

File Archives

Systems

AIX (421)
Apple (1,760)
BSD (368)
Cisco (1,901)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (4,010)
HPUX (873)
iOS (280)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (39,200)
Mac OS X (672)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,543)
Slackware (941)
Solaris (1,597)
SUSE (1,444)
Ubuntu (7,062)
UNIX (8,822)
UnixWare (180)
Windows (5,721)
Other

CVE-2017-9835

Overview

Related Files

File Archive:

January 2021

Top Authors In Last 30 Days

File Tags

File Archives

Systems