First published: Mon Jul 12 2010(Updated: )
A memory corruption vulnerability caused by long names was discovered [1] in Ghostscript 8.64 and earlier. A specially crafted PDF file could result in the execution of arbitrary code if opened or printed (i.e. via CUPS). This was corrected in upstream Ghostscript 8.70 [2], version 8.64 and previous are affected by this flaw (all the way back to Ghostscript 7.05). References: [1] <a href="http://bugs.ghostscript.com/show_bug.cgi?id=690523">http://bugs.ghostscript.com/show_bug.cgi?id=690523</a> [2] <a href="http://svn.ghostscript.com/viewvc?view=rev&revision=9797">http://svn.ghostscript.com/viewvc?view=rev&revision=9797</a>
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Artifex Gpl Ghostscript | =8.01 | |
Artifex Afpl Ghostscript | =7.00 | |
Artifex Afpl Ghostscript | =8.54 | |
Artifex Gpl Ghostscript | =8.54 | |
Artifex Gpl Ghostscript | =8.15 | |
Artifex Afpl Ghostscript | =7.04 | |
Artifex Afpl Ghostscript | =7.03 | |
Artifex Afpl Ghostscript | =8.13 | |
Artifex Afpl Ghostscript | =8.50 | |
Artifex Gpl Ghostscript | =8.56 | |
Artifex Gpl Ghostscript | =8.62 | |
Artifex Afpl Ghostscript | =8.52 | |
Artifex Gpl Ghostscript | =8.57 | |
Artifex Gpl Ghostscript | <=8.64 | |
Artifex Afpl Ghostscript | =8.14 | |
Artifex Gpl Ghostscript | =8.51 | |
Artifex Afpl Ghostscript | =8.00 | |
Artifex Gpl Ghostscript | =8.61 | |
Artifex Afpl Ghostscript | =8.53 | |
Artifex Afpl Ghostscript | =6.0 | |
Artifex Gpl Ghostscript | =8.50 | |
Artifex Afpl Ghostscript | =6.01 | |
Artifex Gpl Ghostscript | =8.71 | |
Artifex Gpl Ghostscript | =8.70 | |
Artifex Gpl Ghostscript | =8.60 | |
Artifex Afpl Ghostscript | =8.12 | |
Artifex Afpl Ghostscript | =8.11 | |
Artifex Gpl Ghostscript | =8.63 | |
Artifex Afpl Ghostscript | =8.51 | |
Artifex Ghostscript Fonts | =8.11 | |
Artifex Afpl Ghostscript | =6.50 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.