Back to search
CVE-2019-6116
Published: Mar 19, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2019:0229
vendor-advisory
x_refsource_REDHAT
106700
vdb-entry
x_refsource_BID
USN-3866-1
vendor-advisory
x_refsource_UBUNTU
46242
exploit
x_refsource_EXPLOIT-DB
[debian-lts-announce] 20190211 [SECURITY] [DLA 1670-1] ghostscript security update
mailing-list
x_refsource_MLIST
DSA-4372
vendor-advisory
x_refsource_DEBIAN
https://bugs.chromium.org/p/project-zero/issues/detail?id=1729
x_refsource_MISC
http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00047.html
x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00048.html
x_refsource_CONFIRM
[oss-security] 29190123 ghostscript: subroutines within pseudo-operators must themselves be pseudo-operators
mailing-list
x_refsource_MLIST
https://bugs.ghostscript.com/show_bug.cgi?id=700317
x_refsource_CONFIRM
FEDORA-2019-7b9bb0e426
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-15d57af79a
vendor-advisory
x_refsource_FEDORA
[oss-security] 20190321 ghostscript: 2 -dSAFER bypass: CVE-2019-3835 & CVE-2019-3838
mailing-list
x_refsource_MLIST
FEDORA-2019-9f06aa44f6
vendor-advisory
x_refsource_FEDORA
20190402 [slackware-security] ghostscript (SSA:2019-092-01)
mailing-list
x_refsource_BUGTRAQ
RHBA-2019:0327
vendor-advisory
x_refsource_REDHAT
FEDORA-2019-953fc0f16d
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-ebd6c4f15a
vendor-advisory
x_refsource_FEDORA
GLSA-202004-03
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now