First published: Wed Sep 05 2018(Updated: )
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Artifex Ghostscript | <9.24 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =16.04 | |
Canonical Ubuntu Linux | =18.04 | |
Artifex Gpl Ghostscript | <9.26 | |
debian/ghostscript | 9.53.3~dfsg-7+deb11u7 9.53.3~dfsg-7+deb11u9 10.0.0~dfsg-11+deb12u5 10.0.0~dfsg-11+deb12u6 10.04.0~dfsg-1 10.04.0~dfsg-2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-16510 is a vulnerability in Artifex Ghostscript that allows remote attackers to crash the interpreter or potentially have other unspecified impacts.
CVE-2018-16510 has a severity rating of 7.8 (high).
CVE-2018-16510 affects Artifex Ghostscript versions before 9.24.
The recommended remedy for CVE-2018-16510 on Debian systems is to update to version 9.27~dfsg-2+deb10u5 or later.
The recommended remedy for CVE-2018-16510 on Ubuntu systems is to update to version 9.22~dfsg+1-0ubuntu1.2 or later.