Vulnerabilities > Artifex > Ghostscript

DATE CVE VULNERABILITY TITLE RISK
2017-04-19 CVE-2017-7948 Integer Overflow or Wraparound vulnerability in Artifex Ghostscript 9.21
Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via a crafted PostScript document.
local
low complexity
artifex CWE-190
7.8
7.8
2017-04-14 CVE-2016-8602 Incorrect Type Conversion or Cast vulnerability in Artifex Ghostscript
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Postscript document that calls .sethalftone5 with an empty operand stack.
local
low complexity
artifex CWE-704
7.8
7.8
2017-04-03 CVE-2016-10317 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Artifex Ghostscript 9.20
The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc.
local
low complexity
artifex CWE-119
7.8
7.8
2017-04-03 CVE-2017-5951 NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20
The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc.
local
low complexity
artifex CWE-476
5.5
5.5
2017-04-03 CVE-2016-10220 NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20
The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc.
local
low complexity
artifex CWE-476
5.5
5.5
2017-04-03 CVE-2016-10219 Divide By Zero vulnerability in Artifex Ghostscript 9.20
The intersect function in base/gxfill.c in Artifex Software, Inc.
local
low complexity
artifex CWE-369
5.5
5.5
2017-04-03 CVE-2016-10218 NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20
The pdf14_pop_transparency_group function in base/gdevp14.c in the PDF Transparency module in Artifex Software, Inc.
local
low complexity
artifex CWE-476
5.5
5.5
2017-04-03 CVE-2016-10217 Use After Free vulnerability in Artifex Ghostscript 9.20
The pdf14_open function in base/gdevp14.c in Artifex Software, Inc.
local
low complexity
artifex CWE-416
5.5
5.5
2017-03-21 CVE-2017-7207 NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20
The mem_get_bits_rectangle function in Artifex Software, Inc.
local
low complexity
artifex CWE-476
5.5
5.5