Artifex Ghostscript 9.22 is affected by: Obtain Information. The impact is: obtain sensitive information. The component is: affected source code file, affected function, affected executable, affected libga (imagemagick used that). The attack vector is: Someone must open a postscript file though ghostscript. Because of imagemagick also use libga, so it was affected as well.
References
Link | Resource |
---|---|
http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=2fc463d0e | |
http://www.securityfocus.com/bid/108463 | |
https://bugs.ghostscript.com/show_bug.cgi?id=698676 | Exploit Patch Vendor Advisory |
Configurations
History
07 Nov 2023, 02:40
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2019-05-23 15:29
Updated : 2024-02-28 17:08
NVD link : CVE-2017-15652
Mitre link : CVE-2017-15652
CVE.ORG link : CVE-2017-15652
JSON object : View
Products Affected
artifex
- ghostscript
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor