Home

CVE-2018-16541

Description

In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice replacement to crash the interpreter.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.454

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Ghostscript 9.23Windows
Ghostscript security update (CESA-2018:3834) ghostscript-9.07-31.el7_6.6.i686.rpmLinux
Ghostscript security update (CESA-2018:3834) ghostscript-9.07-31.el7_6.6.x86_64.rpmLinux
Ghostscript security update (CESA-2018:3834) ghostscript-doc-9.07-31.el7_6.6.noarch.rpmLinux
Ghostscript security update (CESA-2018:3834) ghostscript-gtk-9.07-31.el7_6.6.x86_64.rpmLinux
Ghostscript security update (CESA-2018:3834) ghostscript-cups-9.07-31.el7_6.6.x86_64.rpmLinux
Ghostscript security update (CESA-2018:3834) ghostscript-devel-9.07-31.el7_6.6.i686.rpmLinux
Ghostscript security update (CESA-2018:3834) ghostscript-devel-9.07-31.el7_6.6.x86_64.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-9.07-31.el7_6.6.i686.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-9.07-31.el7_6.6.x86_64.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-cups-9.07-31.el7_6.6.x86_64.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-devel-9.07-31.el7_6.6.i686.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-devel-9.07-31.el7_6.6.x86_64.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-doc-9.07-31.el7_6.6.noarch.rpmLinux
(RHSA-2018:3834) ghostscript security and bug fix update ghostscript-gtk-9.07-31.el7_6.6.x86_64.rpmLinux
ghostscript Security Update (ALAS-2018-1088) ghostscript-devel-9.06-8.amzn2.0.5.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234