Vulnerabilities > Artifex

DATE CVE VULNERABILITY TITLE RISK
2022-06-16 CVE-2022-2085 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory.
4.3
2022-05-18 CVE-2022-30974 Uncontrolled Recursion vulnerability in Artifex Mujs
compile in regexp.c in Artifex MuJS through 1.2.0 results in stack consumption because of unlimited recursion, a different issue than CVE-2019-11413.
network
artifex CWE-674
4.3
2022-05-18 CVE-2022-30975 NULL Pointer Dereference vulnerability in Artifex Mujs
In Artifex MuJS through 1.2.0, jsP_dumpsyntax in jsdump.c has a NULL pointer dereference, as demonstrated by mujs-pp.
network
artifex CWE-476
4.3
2022-04-25 CVE-2019-25059 Artifex Ghostscript through 9.26 mishandles .completefont.
network
artifex debian
6.8
2022-04-14 CVE-2022-1350 Out-of-bounds Write vulnerability in Artifex Ghostpcl 9.55.0
A vulnerability classified as problematic was found in GhostPCL 9.55.0.
network
artifex CWE-787
6.8
2022-02-16 CVE-2021-3781 Improper Input Validation vulnerability in multiple products
A trivial sandbox (enabled with the `-dSAFER` option) escape flaw was found in the ghostscript interpreter by injecting a specially crafted pipe command.
network
artifex fedoraproject CWE-20
critical
9.3
2022-02-14 CVE-2021-45005 Out-of-bounds Write vulnerability in Artifex Mujs 1.1.3
Artifex MuJS v1.1.3 was discovered to contain a heap buffer overflow which is caused by conflicting JumpList of nested try/finally statements.
network
low complexity
artifex CWE-787
7.5
2022-01-01 CVE-2021-45944 Use After Free vulnerability in multiple products
Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sampled_data_continue and interp).
4.3
2022-01-01 CVE-2021-45949 Out-of-bounds Write vulnerability in multiple products
Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish (called from sampled_data_continue and interp).
4.3
2021-07-21 CVE-2021-37220 Out-of-bounds Write vulnerability in multiple products
MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table.
4.3