Computer Security
[EN] securityvulns.ru no-pyccku


ghostscript memory corruption
Published:03.08.2015
Source:
SecurityVulns ID:14617
Type:library
Threat Level:
5/10
Description:Memory corruption on Postscript file parsing.
Affected:GHOSTSCRIPT : ghostscript 9.15
CVE:CVE-2015-3228 (Integer overflow in the gs_heap_alloc_bytes function in base/gsmalloc.c in Ghostscript 9.15 and earlier allows remote attackers to cause a denial of service (crash) via a crafted Postscript (ps) file, as demonstrated by using the ps2pdf command, which triggers an out-of-bounds read or write.)
Original documentdocumentUBUNTU, [USN-2697-1] Ghostscript vulnerability (03.08.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod