Lucene search
Redhat.comRH:CVE-2018-17961HistoryOct 24, 2018 - 5:49 p.m.
CVE-2018-17961
2018-10-2417:49:38
redhat.com
access.redhat.com
9
EPSS
0.973
Percentile
99.9%
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2018-17183.
Mitigation
Please refer to the "Mitigation" section of CVE-2018-16509 : <https://access.redhat.com/security/cve/cve-2018-16509>
Related
cvelist
cvelist
nvd
nvd
osv
osv
CVE-2018-17961
2018-10-15 16:29:02
ghostscript - security update
2018-09-16 00:00:00
CVE-2018-16509
2018-09-05 06:29:00
prion
prion
Code injection
2018-10-15 16:29:00
Code injection
2018-09-19 15:29:00
Design/Logic Flaw
2018-09-05 06:29:00
debiancve
debiancve
alpinelinux
alpinelinux
CVE-2018-17961
2018-10-15 16:29:02
CVE-2018-16802
2018-09-10 16:29:00
cve
cve
redhatcve
redhatcve
ubuntucve
ubuntucve
openvas
openvas
Debian: Security Advisory (DSA-4294-1)
2018-09-15 00:00:00
CentOS Update for ghostscript CESA-2018:3760 centos6
2018-12-07 00:00:00
Slackware: Security Advisory (SSA:2018-256-01)
2022-04-21 00:00:00
zdt
zdt
ghostscript - executeonly Bypass with errorhandler Setup Exploit
2018-10-10 00:00:00
veracode
veracode
Sandbox Restrictions Bypass
2019-05-16 03:23:47
Arbitrary Code Execution
2019-05-16 03:23:47
Privilege Escalation
2019-01-15 09:27:20
exploitdb
exploitdb
ghostscript - executeonly Bypass with errorhandler Setup
2018-10-09 00:00:00
Ghostscript - Failed Restore Command Execution (Metasploit)
2018-09-10 00:00:00
nessus
nessus
RHEL 6 : ghostscript (RHSA-2018:3760)
2018-12-04 00:00:00
Virtuozzo 6 : ghostscript / ghostscript-devel / ghostscript-doc / etc (VZLSA-2018-3760)
2020-12-22 00:00:00
Slackware 14.2 / current : ghostscript (SSA:2018-256-01)
2018-09-14 00:00:00
amazon
amazon
Important: ghostscript
2018-12-20 00:04:00
centos
centos
ghostscript security update
2018-12-06 18:54:07
ghostscript security update
2018-12-13 20:45:18
ghostscript security update
2018-12-19 03:22:11
slackware
slackware
[slackware-security] ghostscript
2018-09-13 22:03:55
checkpoint_advisories
checkpoint_advisories
Artifex Ghostscript Remote Code Execution (CVE-2018-16509)
2022-09-18 00:00:00
redhat
redhat
(RHSA-2018:3760) Important: ghostscript security update
2018-12-03 21:13:23
(RHSA-2018:3761) Important: ghostscript security and bug fix update
2018-12-03 21:13:39
(RHSA-2018:3834) Important: ghostscript security and bug fix update
2018-12-17 18:48:48
f5
f5
K02495251 : Ghostscript vulnerability CVE-2018-16509 (VU#332928)
2018-09-26 00:00:00
metasploit
metasploit
Ghostscript Failed Restore Command Execution
2018-09-06 00:56:32
cert
cert
Ghostscript contains multiple -dSAFER sandbox bypass vulnerabilities
2018-08-21 00:00:00
debian
debian
[SECURITY] [DLA 1527-1] ghostscript security update
2018-09-30 11:48:36
[SECURITY] [DSA 4294-1] ghostscript security update
2018-09-16 20:48:10
[SECURITY] [DLA 1552-1] ghostscript security update
2018-10-22 12:22:38
ubuntu
ubuntu
Ghostscript vulnerabilities
2018-10-01 00:00:00
Ghostscript vulnerabilities
2018-10-30 00:00:00
oraclelinux
oraclelinux
ghostscript security and bug fix update
2018-12-03 00:00:00
ghostscript security update
2018-12-03 00:00:00
ghostscript security and bug fix update
2018-12-18 00:00:00
suse
suse
Security update for ghostscript (important)
2018-12-15 12:10:58
Security update for ghostscript (important)
2018-12-15 12:14:29
Security update for ghostscript (important)
2018-10-05 21:13:14
archlinux
archlinux
[ASA-201811-3] ghostscript: sandbox escape
2018-11-06 00:00:00
mageia
mageia
Updated ghostscript packages fix security vulnerabilities
2018-10-19 21:36:37
fedora
fedora
[SECURITY] Fedora 29 Update: ghostscript-9.26-1.fc29
2019-02-12 02:58:39
[SECURITY] Fedora 28 Update: ghostscript-9.26-1.fc28
2019-02-18 01:27:21
ibm
ibm
Security Bulletin: Vulnerabilities in Ghostscript affect PowerKVM
2018-12-17 14:30:02