Lucene search
PRIOn knowledge basePRION:CVE-2023-36664HistoryJun 25, 2023 - 10:15 p.m.
Design/Logic Flaw
2023-06-2522:15:00
PRIOn knowledge base
www.prio-n.com
13
artifex ghostscript
permission validation
pipe devices
security flaw
Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix).
| CPE | Name | Operator | Version |
|---|---|---|---|
| ghostscript | le | 10.01.2 | |
| debian_linux | eq | 11.0 | |
| debian_linux | eq | 12.0 | |
| fedora | eq | 37 | |
| fedora | eq | 38 |
References
bugs.ghostscript.com/show_bug.cgi?id=706761
git.ghostscript.com/?p=ghostpdl.git;a=commit;h=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d
git.ghostscript.com/?p=ghostpdl.git;a=commit;h=505eab7782b429017eb434b2b95120855f2b0e3c
lists.fedoraproject.org/archives/list/[email protected]/message/2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ/
lists.fedoraproject.org/archives/list/[email protected]/message/5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV/
security.gentoo.org/glsa/202309-03
www.debian.org/security/2023/dsa-5446
Related
nessus
nessus
Debian DSA-5446-1 : ghostscript - security update
2023-07-04 00:00:00
Rocky Linux 9 : ghostscript (RLSA-2023:5459)
2023-10-06 00:00:00
Artifex Ghostscript < 10.01.2 Security Bypass
2023-06-30 00:00:00
osv
osv
Important: ghostscript security update
2023-10-06 22:58:14
CVE-2023-36664
2023-06-25 22:15:21
ghostscript vulnerability
2023-07-10 13:06:27
oraclelinux
oraclelinux
ghostscript security update
2023-10-06 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: ghostscript-10.01.2-1.fc38
2023-07-16 01:27:12
[SECURITY] Fedora 37 Update: ghostscript-9.56.1-8.fc37
2023-07-23 01:24:49
slackware
slackware
[slackware-security] ghostscript
2024-03-07 20:46:46
openvas
openvas
Debian: Security Advisory (DSA-5446-1)
2023-07-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2844-1)
2023-07-17 00:00:00
Fedora: Security Advisory for ghostscript (FEDORA-2023-83c805b441)
2023-07-26 00:00:00
githubexploit
githubexploit
Exploit for CVE-2023-36664
2024-04-09 22:05:29
Exploit for CVE-2023-36664
2023-08-12 18:33:57
Exploit for CVE-2023-36664
2023-12-02 10:28:10
cvelist
cvelist
CVE-2023-36664
2023-06-25 00:00:00
nvd
nvd
CVE-2023-36664
2023-06-25 22:15:21
amazon
amazon
Important: ghostscript
2024-05-09 19:16:00
debian
debian
[SECURITY] [DSA 5446-1] ghostscript security update
2023-07-03 20:10:41
cve
cve
CVE-2023-36664
2023-06-25 22:15:21
ubuntu
ubuntu
Ghostscript vulnerability
2023-07-10 00:00:00
ubuntucve
ubuntucve
CVE-2023-36664
2023-06-25 00:00:00
veracode
veracode
Improper Input Validation
2023-07-19 23:22:53
redhatcve
redhatcve
CVE-2023-36664
2023-06-27 06:47:22
rosalinux
rosalinux
Advisory ROSA-SA-2023-2318
2023-12-26 12:01:06
rocky
rocky
ghostscript security update
2023-10-06 22:58:14
almalinux
almalinux
Important: ghostscript security update
2023-10-05 00:00:00
alpinelinux
alpinelinux
CVE-2023-36664
2023-06-25 22:15:21
redhat
redhat
(RHSA-2023:4324) Important: ghostscript security update
2023-07-31 08:17:10
(RHSA-2023:5459) Important: ghostscript security update
2023-10-05 10:11:33
redos
redos
ROS-20230911-05
2023-09-11 00:00:00
debiancve
debiancve
CVE-2023-36664
2023-06-25 22:15:21
mageia
mageia
Updated ghostscript packages fix security vulnerability
2023-09-11 16:07:54
gentoo
gentoo
GPL Ghostscript: Multiple Vulnerabilities
2023-09-17 00:00:00
thn
thn
hp
hp
HP ThinPro 8.0 SP 7 Security Updates
2024-01-26 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00