ghostscript-9.54.0-2.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10783-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ghostscript-9.54.0-2.2 on GA media These are all security issues fixed in the ghostscript-9.54.0-2.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10783 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2016-10217/ SUSE CVE CVE-2016-10217 page https://www.suse.com/security/cve/CVE-2016-10218/ SUSE CVE CVE-2016-10218 page https://www.suse.com/security/cve/CVE-2016-10219/ SUSE CVE CVE-2016-10219 page https://www.suse.com/security/cve/CVE-2016-10220/ SUSE CVE CVE-2016-10220 page https://www.suse.com/security/cve/CVE-2016-10317/ SUSE CVE CVE-2016-10317 page https://www.suse.com/security/cve/CVE-2017-5951/ SUSE CVE CVE-2017-5951 page https://www.suse.com/security/cve/CVE-2017-7207/ SUSE CVE CVE-2017-7207 page https://www.suse.com/security/cve/CVE-2017-8291/ SUSE CVE CVE-2017-8291 page https://www.suse.com/security/cve/CVE-2017-9216/ SUSE CVE CVE-2017-9216 page https://www.suse.com/security/cve/CVE-2018-10194/ SUSE CVE CVE-2018-10194 page https://www.suse.com/security/cve/CVE-2018-15908/ SUSE CVE CVE-2018-15908 page https://www.suse.com/security/cve/CVE-2018-15909/ SUSE CVE CVE-2018-15909 page https://www.suse.com/security/cve/CVE-2018-15910/ SUSE CVE CVE-2018-15910 page https://www.suse.com/security/cve/CVE-2018-15911/ SUSE CVE CVE-2018-15911 page https://www.suse.com/security/cve/CVE-2018-16509/ SUSE CVE CVE-2018-16509 page https://www.suse.com/security/cve/CVE-2018-16510/ SUSE CVE CVE-2018-16510 page https://www.suse.com/security/cve/CVE-2018-16511/ SUSE CVE CVE-2018-16511 page https://www.suse.com/security/cve/CVE-2018-16513/ SUSE CVE CVE-2018-16513 page https://www.suse.com/security/cve/CVE-2018-16539/ SUSE CVE CVE-2018-16539 page https://www.suse.com/security/cve/CVE-2018-16540/ SUSE CVE CVE-2018-16540 page https://www.suse.com/security/cve/CVE-2018-16541/ SUSE CVE CVE-2018-16541 page https://www.suse.com/security/cve/CVE-2018-16542/ SUSE CVE CVE-2018-16542 page https://www.suse.com/security/cve/CVE-2018-16543/ SUSE CVE CVE-2018-16543 page https://www.suse.com/security/cve/CVE-2018-16585/ SUSE CVE CVE-2018-16585 page https://www.suse.com/security/cve/CVE-2018-16802/ SUSE CVE CVE-2018-16802 page https://www.suse.com/security/cve/CVE-2018-17183/ SUSE CVE CVE-2018-17183 page https://www.suse.com/security/cve/CVE-2018-17961/ SUSE CVE CVE-2018-17961 page https://www.suse.com/security/cve/CVE-2018-18073/ SUSE CVE CVE-2018-18073 page https://www.suse.com/security/cve/CVE-2018-18284/ SUSE CVE CVE-2018-18284 page https://www.suse.com/security/cve/CVE-2018-19409/ SUSE CVE CVE-2018-19409 page https://www.suse.com/security/cve/CVE-2018-19475/ SUSE CVE CVE-2018-19475 page https://www.suse.com/security/cve/CVE-2018-19476/ SUSE CVE CVE-2018-19476 page https://www.suse.com/security/cve/CVE-2018-19477/ SUSE CVE CVE-2018-19477 page https://www.suse.com/security/cve/CVE-2018-6616/ SUSE CVE CVE-2018-6616 page https://www.suse.com/security/cve/CVE-2019-10216/ SUSE CVE CVE-2019-10216 page https://www.suse.com/security/cve/CVE-2019-12973/ SUSE CVE CVE-2019-12973 page https://www.suse.com/security/cve/CVE-2019-14811/ SUSE CVE CVE-2019-14811 page https://www.suse.com/security/cve/CVE-2019-14817/ SUSE CVE CVE-2019-14817 page https://www.suse.com/security/cve/CVE-2019-3835/ SUSE CVE CVE-2019-3835 page https://www.suse.com/security/cve/CVE-2019-3838/ SUSE CVE CVE-2019-3838 page https://www.suse.com/security/cve/CVE-2019-6116/ SUSE CVE CVE-2019-6116 page https://www.suse.com/security/cve/CVE-2020-12268/ SUSE CVE CVE-2020-12268 page https://www.suse.com/security/cve/CVE-2020-15900/ SUSE CVE CVE-2020-15900 page https://www.suse.com/security/cve/CVE-2021-3781/ SUSE CVE CVE-2021-3781 page openSUSE Tumbleweed ghostscript-9.54.0-2.2 ghostscript-devel-9.54.0-2.2 ghostscript-x11-9.54.0-2.2 ghostscript-9.54.0-2.2 as a component of openSUSE Tumbleweed ghostscript-devel-9.54.0-2.2 as a component of openSUSE Tumbleweed ghostscript-x11-9.54.0-2.2 as a component of openSUSE Tumbleweed The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted file that is mishandled in the color management module. CVE-2016-10217 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10217.html CVE-2016-10217 https://bugzilla.suse.com/1032130 SUSE Bug 1032130 The pdf14_pop_transparency_group function in base/gdevp14.c in the PDF Transparency module in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. CVE-2016-10218 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10218.html CVE-2016-10218 https://bugzilla.suse.com/1032135 SUSE Bug 1032135 The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file. CVE-2016-10219 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10219.html CVE-2016-10219 https://bugzilla.suse.com/1032138 SUSE Bug 1032138 The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF Transparency module. CVE-2016-10220 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 low 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10220.html CVE-2016-10220 https://bugzilla.suse.com/1032120 SUSE Bug 1032120 https://bugzilla.suse.com/1036453 SUSE Bug 1036453 The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document. CVE-2016-10317 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10317.html CVE-2016-10317 https://bugzilla.suse.com/1032230 SUSE Bug 1032230 The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. CVE-2017-5951 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 low 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5951.html CVE-2017-5951 https://bugzilla.suse.com/1032114 SUSE Bug 1032114 https://bugzilla.suse.com/1036453 SUSE Bug 1036453 The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document. CVE-2017-7207 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 low 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7207.html CVE-2017-7207 https://bugzilla.suse.com/1030263 SUSE Bug 1030263 https://bugzilla.suse.com/1036453 SUSE Bug 1036453 Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017. CVE-2017-8291 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-8291.html CVE-2017-8291 https://bugzilla.suse.com/1036453 SUSE Bug 1036453 libjbig2dec.a in Artifex jbig2dec 0.13, as used in MuPDF and Ghostscript, has a NULL pointer dereference in the jbig2_huffman_get function in jbig2_huffman.c. For example, the jbig2dec utility will crash (segmentation fault) when parsing an invalid file. CVE-2017-9216 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9216.html CVE-2017-9216 https://bugzilla.suse.com/1040643 SUSE Bug 1040643 The set_text_distance function in devices/vector/gdevpdts.c in the pdfwrite component in Artifex Ghostscript through 9.22 does not prevent overflows in text-positioning calculation, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document. CVE-2018-10194 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-10194.html CVE-2018-10194 https://bugzilla.suse.com/1090099 SUSE Bug 1090099 In Artifex Ghostscript 9.23 before 2018-08-23, attackers are able to supply malicious PostScript files to bypass .tempfile restrictions and write files. CVE-2018-15908 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-15908.html CVE-2018-15908 https://bugzilla.suse.com/1105464 SUSE Bug 1105464 https://bugzilla.suse.com/1106171 SUSE Bug 1106171 In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could be used by attackers able to supply crafted PostScript files to crash the interpreter or potentially execute code. CVE-2018-15909 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-15909.html CVE-2018-15909 https://bugzilla.suse.com/1105464 SUSE Bug 1105464 https://bugzilla.suse.com/1106172 SUSE Bug 1106172 In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code. CVE-2018-15910 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-15910.html CVE-2018-15910 https://bugzilla.suse.com/1105464 SUSE Bug 1105464 https://bugzilla.suse.com/1106173 SUSE Bug 1106173 In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access in the aesdecode operator to crash the interpreter or potentially execute code. CVE-2018-15911 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-15911.html CVE-2018-15911 https://bugzilla.suse.com/1105464 SUSE Bug 1105464 https://bugzilla.suse.com/1106195 SUSE Bug 1106195 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction. CVE-2018-16509 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16509.html CVE-2018-16509 https://bugzilla.suse.com/1107410 SUSE Bug 1107410 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1118318 SUSE Bug 1118318 An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact. CVE-2018-16510 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16510.html CVE-2018-16510 https://bugzilla.suse.com/1107411 SUSE Bug 1107411 An issue was discovered in Artifex Ghostscript before 9.24. A type confusion in "ztype" could be used by remote attackers able to supply crafted PostScript to crash the interpreter or possibly have unspecified other impact. CVE-2018-16511 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16511.html CVE-2018-16511 https://bugzilla.suse.com/1107426 SUSE Bug 1107426 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other impact. CVE-2018-16513 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16513.html CVE-2018-16513 https://bugzilla.suse.com/1107412 SUSE Bug 1107412 In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect access checking in temp file handling to disclose contents of files on the system otherwise not readable. CVE-2018-16539 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16539.html CVE-2018-16539 https://bugzilla.suse.com/1107422 SUSE Bug 1107422 In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact. CVE-2018-16540 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16540.html CVE-2018-16540 https://bugzilla.suse.com/1107420 SUSE Bug 1107420 In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice replacement to crash the interpreter. CVE-2018-16541 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16541.html CVE-2018-16541 https://bugzilla.suse.com/1107421 SUSE Bug 1107421 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use insufficient interpreter stack-size checking during error handling to crash the interpreter. CVE-2018-16542 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16542.html CVE-2018-16542 https://bugzilla.suse.com/1107413 SUSE Bug 1107413 In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolution allow attackers to have an unspecified impact. CVE-2018-16543 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16543.html CVE-2018-16543 https://bugzilla.suse.com/1107423 SUSE Bug 1107423 ** DISPUTED ** An issue was discovered in Artifex Ghostscript before 9.24. The .setdistillerkeys PostScript command is accepted even though it is not intended for use during document processing (e.g., after the startup phase). This leads to memory corruption, allowing remote attackers able to supply crafted PostScript to crash the interpreter or possibly have unspecified other impact. Note: A reputable source believes that the CVE is potentially a duplicate of CVE-2018-15910 as explained in Red Hat bugzilla (https://bugzilla.redhat.com/show_bug.cgi?id=1626193). CVE-2018-16585 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 low 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16585.html CVE-2018-16585 https://bugzilla.suse.com/1107581 SUSE Bug 1107581 An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction. This is due to an incomplete fix for CVE-2018-16509. CVE-2018-16802 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16802.html CVE-2018-16802 https://bugzilla.suse.com/1107410 SUSE Bug 1107410 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117327 SUSE Bug 1117327 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code. CVE-2018-17183 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-17183.html CVE-2018-17183 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2018-17183. CVE-2018-17961 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-17961.html CVE-2018-17961 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 https://bugzilla.suse.com/1129180 SUSE Bug 1129180 Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the saved execution stack in an error object. CVE-2018-18073 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-18073.html CVE-2018-18073 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator. CVE-2018-18284 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-18284.html CVE-2018-18284 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 https://bugzilla.suse.com/1144621 SUSE Bug 1144621 An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used. CVE-2018-19409 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19409.html CVE-2018-19409 https://bugzilla.suse.com/1108027 SUSE Bug 1108027 https://bugzilla.suse.com/1109105 SUSE Bug 1109105 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1111480 SUSE Bug 1111480 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 https://bugzilla.suse.com/1118455 SUSE Bug 1118455 psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available stack space is not checked when the device remains the same. CVE-2018-19475 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19475.html CVE-2018-19475 https://bugzilla.suse.com/1117327 SUSE Bug 1117327 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolorspace type confusion. CVE-2018-19476 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19476.html CVE-2018-19476 https://bugzilla.suse.com/1117313 SUSE Bug 1117313 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a JBIG2Decode type confusion. CVE-2018-19477 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19477.html CVE-2018-19477 https://bugzilla.suse.com/1117274 SUSE Bug 1117274 https://bugzilla.suse.com/1117331 SUSE Bug 1117331 In OpenJPEG 2.3.0, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. CVE-2018-6616 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-6616.html CVE-2018-6616 https://bugzilla.suse.com/1079845 SUSE Bug 1079845 https://bugzilla.suse.com/1140359 SUSE Bug 1140359 In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges and access files outside of restricted areas. CVE-2019-10216 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10216.html CVE-2019-10216 https://bugzilla.suse.com/1144621 SUSE Bug 1144621 https://bugzilla.suse.com/1146882 SUSE Bug 1146882 https://bugzilla.suse.com/1146884 SUSE Bug 1146884 In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616. CVE-2019-12973 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-12973.html CVE-2019-12973 https://bugzilla.suse.com/1140359 SUSE Bug 1140359 A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands. CVE-2019-14811 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-14811.html CVE-2019-14811 https://bugzilla.suse.com/1146882 SUSE Bug 1146882 A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands. CVE-2019-14817 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-14817.html CVE-2019-14817 https://bugzilla.suse.com/1146882 SUSE Bug 1146882 https://bugzilla.suse.com/1146884 SUSE Bug 1146884 It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. CVE-2019-3835 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-3835.html CVE-2019-3835 https://bugzilla.suse.com/1129180 SUSE Bug 1129180 It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. CVE-2019-3838 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-3838.html CVE-2019-3838 https://bugzilla.suse.com/1018128 SUSE Bug 1018128 https://bugzilla.suse.com/1030263 SUSE Bug 1030263 https://bugzilla.suse.com/1032135 SUSE Bug 1032135 https://bugzilla.suse.com/1038835 SUSE Bug 1038835 https://bugzilla.suse.com/1050888 SUSE Bug 1050888 https://bugzilla.suse.com/1050889 SUSE Bug 1050889 https://bugzilla.suse.com/1106171 SUSE Bug 1106171 https://bugzilla.suse.com/1106172 SUSE Bug 1106172 https://bugzilla.suse.com/1106173 SUSE Bug 1106173 https://bugzilla.suse.com/1107422 SUSE Bug 1107422 https://bugzilla.suse.com/1107423 SUSE Bug 1107423 https://bugzilla.suse.com/1107581 SUSE Bug 1107581 https://bugzilla.suse.com/1111479 SUSE Bug 1111479 https://bugzilla.suse.com/1112229 SUSE Bug 1112229 https://bugzilla.suse.com/1114495 SUSE Bug 1114495 https://bugzilla.suse.com/1117022 SUSE Bug 1117022 https://bugzilla.suse.com/1117327 SUSE Bug 1117327 https://bugzilla.suse.com/1118318 SUSE Bug 1118318 https://bugzilla.suse.com/1129180 SUSE Bug 1129180 https://bugzilla.suse.com/1129186 SUSE Bug 1129186 https://bugzilla.suse.com/1136756 SUSE Bug 1136756 In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution. CVE-2019-6116 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-6116.html CVE-2019-6116 https://bugzilla.suse.com/1122319 SUSE Bug 1122319 https://bugzilla.suse.com/1129186 SUSE Bug 1129186 https://bugzilla.suse.com/1134156 SUSE Bug 1134156 jbig2_image_compose in jbig2_image.c in Artifex jbig2dec before 0.18 has a heap-based buffer overflow. CVE-2020-12268 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-12268.html CVE-2020-12268 https://bugzilla.suse.com/1170603 SUSE Bug 1170603 A memory corruption issue was found in Artifex Ghostscript 9.50 and 9.52. Use of a non-standard PostScript operator can allow overriding of file access controls. The 'rsearch' calculation for the 'post' size resulted in a size that was too large, and could underflow to max uint32_t. This was fixed in commit 5d499272b95a6b890a1397e11d20937de000d31b. CVE-2020-15900 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-15900.html CVE-2020-15900 https://bugzilla.suse.com/1174415 SUSE Bug 1174415 A trivial sandbox (enabled with the `-dSAFER` option) escape flaw was found in the ghostscript interpreter by injecting a specially crafted pipe command. This flaw allows a specially crafted document to execute arbitrary commands on the system in the context of the ghostscript interpreter. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. CVE-2021-3781 openSUSE Tumbleweed:ghostscript-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-devel-9.54.0-2.2 openSUSE Tumbleweed:ghostscript-x11-9.54.0-2.2 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3781.html CVE-2021-3781 https://bugzilla.suse.com/1190381 SUSE Bug 1190381 https://bugzilla.suse.com/1191712 SUSE Bug 1191712