Project

General

Profile

Bug #9434

Bug #9432:  ghostscript: Incorrect "restoration of privilege" checking when running out of stack during exception handling (CVE-2018-16802)

[3.8] ghostscript: Incorrect "restoration of privilege" checking when running out of stack during exception handling (CVE-2018-16802)

Added by Alicha CH 9 months ago. Updated 8 months ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
Start date:
09/20/2018
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege"
checking when running out of stack during exception handling could be used by attackers able to supply
crafted PostScript to execute code using the "pipe" instruction. This is due to an incomplete fix for CVE-2018-16509.

References:

https://seclists.org/oss-sec/2018/q3/228
https://seclists.org/oss-sec/2018/q3/229
https://seclists.org/oss-sec/2018/q3/233

Patches:

https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=643b24db
https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3e5d316b
https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=5812b1b7

Associated revisions

Revision 81f78446 (diff)
Added by Leonardo Arena 8 months ago

main/ghostscript: security upgrade to 9.25 (CVE-2018-16802)

Fixes #9434

History

#1 Updated by Anonymous 8 months ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH 8 months ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed
  • Security IDs deleted (CVE-2018-16802)

Also available in: Atom PDF