CVE-2023-36664: OS Command Injection
First published: Sun Jun 25 2023(Updated: )
A vulnerability was found in Ghostscript. This flaw occurs due to a mishandled permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix).
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Artifex Ghostscript | <=10.01.2 | |
| Debian Debian Linux | =11.0 | |
| Debian Debian Linux | =12.0 | |
| Fedoraproject Fedora | =37 | |
| Fedoraproject Fedora | =38 | |
| redhat/ghostscript | <0:9.54.0-10.el9_2 | 0:9.54.0-10.el9_2 |
| redhat/ghostscript | <0:9.54.0-7.el9_0.1 | 0:9.54.0-7.el9_0.1 |
| debian/ghostscript | 9.27~dfsg-2+deb10u5 9.27~dfsg-2+deb10u9 9.53.3~dfsg-7+deb11u6 9.53.3~dfsg-7+deb11u5 10.0.0~dfsg-11+deb12u2 10.0.0~dfsg-11+deb12u1 10.02.0~dfsg-2 |
Remedy
https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d
Remedy
https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=505eab7782b429017eb434b2b95120855f2b0e3c
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d
- https://bugs.ghostscript.com/show_bug.cgi?id=706761
- https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=505eab7782b429017eb434b2b95120855f2b0e3c
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2217805
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2217806
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2217798#c0
- https://git.ghostscript.com/?p=ghostpdl.git;a=commit
- https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=5e65eeae225c7d02d447de5abaf4a8e6d234fcea
- https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=fb342fdb60391073a69147cb71af1ac416a81099
- https://access.redhat.com/errata/RHSA-2023:4324
- https://access.redhat.com/security/cve/cve-2023-36664
- https://access.redhat.com/errata/RHSA-2023:5459
- https://bugzilla.redhat.com/show_bug.cgi?id=2217798
- https://www.cve.org/CVERecord?id=CVE-2023-36664 https://nvd.nist.gov/vuln/detail/CVE-2023-36664
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV/
- https://security.gentoo.org/glsa/202309-03
- https://www.debian.org/security/2023/dsa-5446
- https://bugs.ghostscript.com/show_bug.cgi?id=706778
- https://security-tracker.debian.org/tracker/CVE-2023-36664
- https://www.theregister.com/2024/07/05/ghostscript_vulnerability_severity/
- https://www.bleepingcomputer.com/news/security/rce-bug-in-widely-used-ghostscript-library-now-exploited-in-attacks/
- https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=505eab7782b429017eb434b2b95120855f2b0e3c
- https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ/
Frequently Asked Questions
What is CVE-2023-36664?
CVE-2023-36664 is a vulnerability in Ghostscript that occurs due to a mishandled permission validation for pipe devices.
What is the severity of CVE-2023-36664?
CVE-2023-36664 has a severity rating of 8.4, which is considered high.
How does CVE-2023-36664 affect Artifex Ghostscript?
CVE-2023-36664 affects Artifex Ghostscript versions up to and including 10.01.2.
How does CVE-2023-36664 affect Debian Debian Linux 11.0?
CVE-2023-36664 affects Debian Debian Linux 11.0.
How can I fix CVE-2023-36664 in Ghostscript?
To fix CVE-2023-36664 in Ghostscript, update to version 9.54.0-7.el9_0.1 or apply the recommended security patches provided by the vendor or maintainers.
- collector/redhat-bugzilla
- alias/CVE-2023-36664
- collector/redhat-cve
- collector/nvd-index
- collector/security-tracker-debian
- agent/author
- agent/type
- agent/remedy
- agent/softwarecombine
- agent/severity
- agent/description
- collector/the-register
- source/The Register
- alias/CVE-2024-29510
- collector/bleeping-computer
- source/BleepingComputer
- agent/references
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/weakness
- agent/last-modified-date
- agent/tags
- agent/trending
- package-manager/redhat
- vendor/artifex
- canonical/artifex ghostscript
- version/artifex ghostscript/10.01.2
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/11.0
- version/debian debian linux/12.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/37
- version/fedoraproject fedora/38
- package-manager/debian