Vulnerabilities > CVE-2020-16292 - Out-of-bounds Write vulnerability in multiple products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

NVD

Published: 2020-08-13

Updated: 2023-11-07

Summary

A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

Vulnerable Configurations

Part	Description	Count
Application	Artifex Artifex Ghostscript - Artifex Ghostscript 1.0 Artifex Ghostscript 1.1 Artifex Ghostscript 1.2 Artifex Ghostscript 1.3 Artifex Ghostscript 2.0 Artifex Ghostscript 2.1 Artifex Ghostscript 2.1.1 Artifex Ghostscript 2.2 Artifex Ghostscript 2.3 Artifex Ghostscript 2.4 Artifex Ghostscript 2.4.1 Artifex Ghostscript 2.4.2 Artifex Ghostscript 2.5 Artifex Ghostscript 2.5.1 Artifex Ghostscript 2.5.2 Artifex Ghostscript 2.6 Artifex Ghostscript 2.6.1 Artifex Ghostscript 2.7 Artifex Ghostscript 2.7.1 Artifex Ghostscript 2.7.2 Artifex Ghostscript 2.8 Artifex Ghostscript 2.9 Artifex Ghostscript 2.9.1 Artifex Ghostscript 2.9.2 Artifex Ghostscript 2.9.3 Artifex Ghostscript 2.9.4 Artifex Ghostscript 2.9.5 Artifex Ghostscript 2.9.6 Artifex Ghostscript 2.9.7 Artifex Ghostscript 2.9.8 Artifex Ghostscript 2.9.9 Artifex Ghostscript 2.9.10 Artifex Ghostscript 3.0 Artifex Ghostscript 3.0.3 Artifex Ghostscript 3.01 Artifex Ghostscript 3.1 Artifex Ghostscript 3.1.1 Artifex Ghostscript 3.02 Artifex Ghostscript 3.12 Artifex Ghostscript 3.13 Artifex Ghostscript 3.20 Artifex Ghostscript 3.21 Artifex Ghostscript 3.22 Artifex Ghostscript 3.23 Artifex Ghostscript 3.24 Artifex Ghostscript 3.25 Artifex Ghostscript 3.26 Artifex Ghostscript 3.27 Artifex Ghostscript 3.28 Artifex Ghostscript 3.29 Artifex Ghostscript 3.30 Artifex Ghostscript 3.31 Artifex Ghostscript 3.32 Artifex Ghostscript 3.33 Artifex Ghostscript 3.34 Artifex Ghostscript 3.35 Artifex Ghostscript 3.36 Artifex Ghostscript 3.37 Artifex Ghostscript 3.38 Artifex Ghostscript 3.39 Artifex Ghostscript 3.40 Artifex Ghostscript 3.41 Artifex Ghostscript 3.42 Artifex Ghostscript 3.43 Artifex Ghostscript 3.44 Artifex Ghostscript 3.45 Artifex Ghostscript 3.46 Artifex Ghostscript 3.47 Artifex Ghostscript 3.48 Artifex Ghostscript 3.49 Artifex Ghostscript 3.50 Artifex Ghostscript 3.51 Artifex Ghostscript 3.52 Artifex Ghostscript 3.53 Artifex Ghostscript 3.60 Artifex Ghostscript 3.61 Artifex Ghostscript 3.62 Artifex Ghostscript 3.63 Artifex Ghostscript 3.64 Artifex Ghostscript 3.65 Artifex Ghostscript 3.66 Artifex Ghostscript 3.67 Artifex Ghostscript 3.68 Artifex Ghostscript 3.69 Artifex Ghostscript 3.70 Artifex Ghostscript 4.0 Artifex Ghostscript 4.01 Artifex Ghostscript 4.02 Artifex Ghostscript 4.03 Artifex Ghostscript 4.10 Artifex Ghostscript 4.20 Artifex Ghostscript 4.21 Artifex Ghostscript 4.30 Artifex Ghostscript 4.31 Artifex Ghostscript 4.32 Artifex Ghostscript 4.33 Artifex Ghostscript 4.34 Artifex Ghostscript 4.35 Artifex Ghostscript 4.36 Artifex Ghostscript 4.37 Artifex Ghostscript 4.38 Artifex Ghostscript 4.39 Artifex Ghostscript 4.40 Artifex Ghostscript 4.41 Artifex Ghostscript 4.50 Artifex Ghostscript 4.51 Artifex Ghostscript 4.60 Artifex Ghostscript 4.61 Artifex Ghostscript 4.70 Artifex Ghostscript 4.71 Artifex Ghostscript 4.72 Artifex Ghostscript 4.73 Artifex Ghostscript 4.74 Artifex Ghostscript 4.80 Artifex Ghostscript 4.81 Artifex Ghostscript 5.0 Artifex Ghostscript 5.01 Artifex Ghostscript 5.02 Artifex Ghostscript 5.03 Artifex Ghostscript 5.04 Artifex Ghostscript 5.05 Artifex Ghostscript 5.06 Artifex Ghostscript 5.07 Artifex Ghostscript 5.10 Artifex Ghostscript 5.20 Artifex Ghostscript 5.21 Artifex Ghostscript 5.22 Artifex Ghostscript 5.23 Artifex Ghostscript 5.24 Artifex Ghostscript 5.25 Artifex Ghostscript 5.26 Artifex Ghostscript 5.27 Artifex Ghostscript 5.28 Artifex Ghostscript 5.30 Artifex Ghostscript 5.31 Artifex Ghostscript 5.32 Artifex Ghostscript 5.33 Artifex Ghostscript 5.34 Artifex Ghostscript 5.35 Artifex Ghostscript 5.36 Artifex Ghostscript 5.37 Artifex Ghostscript 5.38 Artifex Ghostscript 5.39 Artifex Ghostscript 5.40 Artifex Ghostscript 5.50 Artifex Ghostscript 5.60 Artifex Ghostscript 5.61 Artifex Ghostscript 5.62 Artifex Ghostscript 5.63 Artifex Ghostscript 5.64 Artifex Ghostscript 5.65 Artifex Ghostscript 5.66 Artifex Ghostscript 5.67 Artifex Ghostscript 5.68 Artifex Ghostscript 5.69 Artifex Ghostscript 5.70 Artifex Ghostscript 5.71 Artifex Ghostscript 5.72 Artifex Ghostscript 5.73 Artifex Ghostscript 5.80 Artifex Ghostscript 5.81 Artifex Ghostscript 5.82 Artifex Ghostscript 5.83 Artifex Ghostscript 5.84 Artifex Ghostscript 5.85 Artifex Ghostscript 5.86 Artifex Ghostscript 5.87 Artifex Ghostscript 5.88 Artifex Ghostscript 5.90 Artifex Ghostscript 5.91 Artifex Ghostscript 5.92 Artifex Ghostscript 5.93 Artifex Ghostscript 5.94 Artifex Ghostscript 5.95 Artifex Ghostscript 5.96 Artifex Ghostscript 5.97 Artifex Ghostscript 5.98 Artifex Ghostscript 5.99 Artifex Ghostscript 6.0 Artifex Ghostscript 6.01 Artifex Ghostscript 6.20 Artifex Ghostscript 6.21 Artifex Ghostscript 6.22 Artifex Ghostscript 6.23 Artifex Ghostscript 6.30 Artifex Ghostscript 6.60 Artifex Ghostscript 6.61 Artifex Ghostscript 6.62 Artifex Ghostscript 6.63 Artifex Ghostscript 6.64 Artifex Ghostscript 7.00 Artifex Ghostscript 7.02 Artifex Ghostscript 7.03 Artifex Ghostscript 7.20 Artifex Ghostscript 7.21 Artifex Ghostscript 7.22 Artifex Ghostscript 7.30 Artifex Ghostscript 7.31 Artifex Ghostscript 7.32 Artifex Ghostscript 7.33 Artifex Ghostscript 8.00 Artifex Ghostscript 8.10 Artifex Ghostscript 8.11 Artifex Ghostscript 8.12 Artifex Ghostscript 8.30 Artifex Ghostscript 8.31 Artifex Ghostscript 8.32 Artifex Ghostscript 8.33 Artifex Ghostscript 8.50 Artifex Ghostscript 8.51 Artifex Ghostscript 8.52 Artifex Ghostscript 8.53 Artifex Ghostscript 8.54 Artifex Ghostscript 8.56 Artifex Ghostscript 8.57 Artifex Ghostscript 8.60 Artifex Ghostscript 8.61 Artifex Ghostscript 8.62 Artifex Ghostscript 8.63 Artifex Ghostscript 8.64 Artifex Ghostscript 8.70 Artifex Ghostscript 8.71 Artifex Ghostscript 8_64 Artifex Ghostscript 9.00 Artifex Ghostscript 9.01 Artifex Ghostscript 9.02 Artifex Ghostscript 9.04 Artifex Ghostscript 9.05 Artifex Ghostscript 9.06 Artifex Ghostscript 9.07 Artifex Ghostscript 9.09 Artifex Ghostscript 9.10 Artifex Ghostscript 9.14 Artifex Ghostscript 9.15 Artifex Ghostscript 9.16 Artifex Ghostscript 9.18 Artifex Ghostscript 9.19 Artifex Ghostscript 9.20 Artifex Ghostscript 9.21 Artifex Ghostscript 9.22 Artifex Ghostscript 9.23 Artifex Ghostscript 9.24 Artifex Ghostscript 9.25 Artifex Ghostscript 9.26 Artifex Ghostscript 9.27 Artifex Ghostscript 9.28 Artifex Ghostscript 9.50 Artifex Ghostscript 9.51	255
OS	Debian Debian Debian Linux 9.0 Debian Debian Linux 10.0	2
OS	Canonical Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 20.04 Canonical Ubuntu Linux 16.04	3

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References