USN-3403-1

Advisory lineage Upstream: 14 Downstream: 0
Published: 28 Aug 2017, 17:55
Last modified:22 Apr 2026, 09:38

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

28 Aug 2017, 17:55
Published
Vulnerability first disclosed
22 Apr 2026, 09:38
Last Modified
Vulnerability information updated

Description

ghostscript vulnerabilities Kamil Frankowicz discovered that Ghostscript mishandles references. A remote attacker could use this to cause a denial of service. (CVE-2017-11714) Kim Gwan Yeong discovered that Ghostscript could allow a heap-based buffer over-read and application crash. A remote attacker could use a crafted document to cause a denial of service. (CVE-2017-9611, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739) Kim Gwan Yeong discovered an use-after-free vulnerability in Ghostscript. A remote attacker could use a crafted file to cause a denial of service. (CVE-2017-9612) Kim Gwan Yeong discovered a lack of integer overflow check in Ghostscript. A remote attacker could use crafted PostScript document to cause a denial of service. (CVE-2017-9835)

Affected Systems

  • ubuntughostscript

    < 9.10~dfsg-0ubuntu10.10 | < 9.18~dfsg~0-0ubuntu2.7

References (8)