CVE Vulnerabilities

CVE-2018-19409

Published: Nov 21, 2018 | Modified: Nov 21, 2024
CVSS 3.x
9.8
CRITICAL
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
7.3 IMPORTANT
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Ubuntu
MEDIUM

An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used.

Affected Software

Name Vendor Start Version End Version
Ghostscript Artifex * 9.26 (excluding)
Red Hat Enterprise Linux 7 RedHat ghostscript-0:9.07-31.el7_6.6 *
Ghostscript Ubuntu bionic *
Ghostscript Ubuntu cosmic *
Ghostscript Ubuntu devel *
Ghostscript Ubuntu esm-infra/bionic *
Ghostscript Ubuntu esm-infra/xenial *
Ghostscript Ubuntu trusty *
Ghostscript Ubuntu upstream *
Ghostscript Ubuntu xenial *

References