CVE-2020-16292
5.5MEDIUM
Summary
A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.
Refferences
https://bugs.ghostscript.com/show_bug.cgi?id=701793
x_refsource_MISC
https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3B...
x_refsource_MISC
https://lists.debian.org/debian-lts-announce/2020/08/msg0...
mailing-listx_refsource_MLIST
https://www.debian.org/security/2020/dsa-4748
vendor-advisoryx_refsource_DEBIAN
https://security.gentoo.org/glsa/202008-20
vendor-advisoryx_refsource_GENTOO
https://usn.ubuntu.com/4469-1/
vendor-advisoryx_refsource_UBUNTU
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database