REDHAT-BUG-2184585: Buffer Overflow
First published: Wed Apr 05 2023(Updated: )
In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. This affects BCPEncode, BCPDecode, TBCPEncode, and TBCPDecode. If the write buffer is filled to one byte less than full, and one then tries to write an escaped character, two bytes are written. <a href="https://bugs.ghostscript.com/show_bug.cgi?id=706494">https://bugs.ghostscript.com/show_bug.cgi?id=706494</a> <a href="https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=37ed5022cecd584de868933b5b60da2e995b3179">https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=37ed5022cecd584de868933b5b60da2e995b3179</a> <a href="https://ghostscript.readthedocs.io/en/latest/News.html">https://ghostscript.readthedocs.io/en/latest/News.html</a> <a href="https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html">https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ghostscript | <=10.01.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugs.ghostscript.com/show_bug.cgi?id=706494
- https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=37ed5022cecd584de868933b5b60da2e995b3179
- https://ghostscript.readthedocs.io/en/latest/News.html
- https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2184586
- https://offsec.almond.consulting/ghostscript-cve-2023-28879.html
- https://artifex.com/news/critical-security-vulnerability-fixed-in-ghostscript
- https://ghostscript.com/docs/9.54.0/Use.htm
- https://github.com/python-pillow/Pillow/blob/main/src/PIL/EpsImagePlugin.py
- https://access.redhat.com/errata/RHSA-2023:6544
- https://access.redhat.com/errata/RHSA-2023:7053
- https://bugzilla.redhat.com/show_bug.cgi?id=2184585
Frequently Asked Questions
What is the severity of REDHAT-BUG-2184585?
The severity of REDHAT-BUG-2184585 is high due to the potential for data corruption and security implications.
How do I fix REDHAT-BUG-2184585?
To fix REDHAT-BUG-2184585, upgrade to a version of Artifex Ghostscript later than 10.01.0 where the vulnerability is patched.
What software is affected by REDHAT-BUG-2184585?
Artifex Ghostscript versions up to and including 10.01.0 are affected by REDHAT-BUG-2184585.
What vulnerabilities are present in REDHAT-BUG-2184585?
REDHAT-BUG-2184585 includes vulnerabilities related to buffer overflow in the PostScript interpreter affecting several encoding functions.
Is Red Hat actively addressing REDHAT-BUG-2184585?
Yes, Red Hat is actively addressing REDHAT-BUG-2184585 through released patches and updates for affected software.
- agent/references
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-28879
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/artifex
- canonical/ghostscript