Showing 1 - 5 of 5

CVE-2019-6116

Status Candidate

Overview

In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.

Slackware Security Advisory - ghostscript Updates: Posted Apr 3, 2019; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New ghostscript packages are available for Slackware 14.2 and -current to fix security issues.; tags | advisory; systems | linux, slackware; advisories | CVE-2019-3835, CVE-2019-3838, CVE-2019-6116; MD5 | 2b5adab9a573677e4a76e4a4c7f512b5; Download | Favorite | Comments (0)

Red Hat Security Advisory 2019-0229-01: Posted Feb 1, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-0229-01 - The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Issues addressed include bypass and use-after-free vulnerabilities.; tags | advisory, vulnerability; systems | linux, redhat; advisories | CVE-2018-16540, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477, CVE-2019-6116; MD5 | 6e1e7d88f9cb72b2d5f893781e6d62de; Download | Favorite | Comments (0)

Debian Security Advisory 4372-1: Posted Jan 26, 2019; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4372-1 - Tavis Ormandy discovered a vulnerability in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service or the execution of arbitrary code if a malformed Postscript file is processed (despite the -dSAFER sandbox being enabled).; tags | advisory, denial of service, arbitrary; systems | linux, debian; advisories | CVE-2019-6116; MD5 | 3327d9657dff6df36e220be7da51df47; Download | Favorite | Comments (0)

Ghostscript Pseudo-Operator Remote Code Execution: Posted Jan 23, 2019; Authored by Tavis Ormandy, Google Security Research; Ghostscript has an issue with pseudo-operators that can lead to remote code execution. Version 9.26 is affected.; tags | exploit, remote, code execution; advisories | CVE-2019-6116; MD5 | e54b142d6e973b2eeff15f79436c06e9; Download | Favorite | Comments (0)

Ubuntu Security Notice USN-3866-1: Posted Jan 23, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3866-1 - Tavis Ormandy discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause a denial of service.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2019-6116; MD5 | 2e5dbb4b6ecaaeecf3f96464df517e02; Download | Favorite | Comments (0)

Page 1 of 1 Back 1 Next