Wind River Support Network

HomeDefectsLIN10-4703
Fixed

LIN10-4703 : Security Advisory - ghostscript - CVE-2018-16802

Created: Sep 16, 2018    Updated: Dec 3, 2018
Resolved Date: Oct 15, 2018
Found In Version: 10.17.41.1
Fix Version: 10.17.41.12
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

An issue was discovered in Artifex Ghostscript before 9.25. Incorrect restoration of privilege checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the pipe instruction. This is due to an incomplete fix for CVE-2018-16509.

https://nvd.nist.gov/vuln/detail/CVE-2018-16802

Other Downloads


CVEs


Live chat
Online