Wind River Support Network

HomeDefectsLIN1023-8312
Acknowledged

LIN1023-8312 : Security Advisory - ghostscript - CVE-2024-46953

Created: Sep 18, 2024    Updated: Nov 18, 2024
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and possible path traversal and code execution.

https://nvd.nist.gov/vuln/detail/CVE-2024-46953
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube