Home CVE Database CVE-2018-16802

CVE-2018-16802

Description

An issue was discovered in Artifex Ghostscript before 9.25. Incorrect restoration of privilege checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the pipe instruction. This is due to an incomplete fix for CVE-2018-16509.

Priority: MEDIUM
CVSS v3: 7.8
Publish Date: Sep 10, 2018
Related ID: --
CVSS v2: HIGH
Modified Date: Sep 10, 2018

Find out more about CVE-2018-16802 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

ghostscript

Live chat
Online