OPENSUSE-SU-2019:1121-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2019-3838

Published: 02 Apr 2019, 11:06

Last modified:04 Feb 2026, 02:23

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

02 Apr 2019, 11:06

Published

Vulnerability first disclosed

04 Feb 2026, 02:23

Last Modified

Vulnerability information updated

Description

Security update for ghostscript This update for ghostscript fixes the following issue: Security issue fixed: - CVE-2019-3838: Fixed a vulnerability which made forceput operator in DefineResource to be still accessible which could allow access to file system outside of the constraints of -dSAFER (bsc#1129186). This update was imported from the SUSE:SLE-15:Update update project.

Affected Systems

opensuse•ghostscript-mini&distro=openSUSE Leap 15.0
< 9.26a-lp150.2.17.2
opensuse•ghostscript&distro=openSUSE Leap 15.0
< 9.26a-lp150.2.17.2

OPENSUSE-SU-2019:1121-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)