Wind River Support Network

HomeDefectsLIN9-7462
Fixed

LIN9-7462 : Security Advisory - ghostscript - CVE-2018-16802

Created: Sep 16, 2018    Updated: Dec 3, 2018
Resolved Date: Oct 9, 2018
Found In Version: 9.0.0.17
Fix Version: 9.0.0.18
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

An issue was discovered in Artifex Ghostscript before 9.25. Incorrect restoration of privilege checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the pipe instruction. This is due to an incomplete fix for CVE-2018-16509.

https://nvd.nist.gov/vuln/detail/CVE-2018-16802

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube