Lucene search
Redhat.comRH:CVE-2019-6116HistoryJan 23, 2019 - 8:20 p.m.
CVE-2019-6116
2019-01-2320:20:04
redhat.com
access.redhat.com
13
0.973 High
EPSS
Percentile
99.9%
It was found that ghostscript could leak sensitive operators on the operand stack when a pseudo-operator pushes a subroutine. A specially crafted PostScript file could use this flaw to escape the -dSAFER protection in order to, for example, have access to the file system outside of the SAFER constraints.
Mitigation
Please refer to the "Mitigation" section of CVE-2018-16509 : <https://access.redhat.com/security/cve/cve-2018-16509>
Related
redhatcve
redhatcve
nessus
nessus
Oracle Linux 6 : ghostscript (ELSA-2018-3760)
2018-12-04 00:00:00
Amazon Linux AMI : ghostscript (ALAS-2018-1137)
2018-12-21 00:00:00
CentOS 6 : ghostscript (CESA-2018:3760)
2018-12-07 00:00:00
nvd
nvd
veracode
veracode
Privilege Escalation
2019-01-15 09:27:20
Remote Code Execution (RCE)
2019-05-16 03:56:21
Arbitrary Command Execution
2019-01-15 09:27:10
prion
prion
Design/Logic Flaw
2018-09-05 06:29:00
Remote code execution
2019-03-21 16:01:00
Design/Logic Flaw
2018-09-10 16:29:00
amazon
amazon
Important: ghostscript
2018-12-20 00:04:00
ubuntucve
ubuntucve
osv
osv
CVE-2018-16509
2018-09-05 06:29:00
CVE-2019-6116
2019-03-21 16:01:07
ghostscript - security update
2019-02-11 00:00:00
cert
cert
Ghostscript contains multiple -dSAFER sandbox bypass vulnerabilities
2018-08-21 00:00:00
cvelist
cvelist
f5
f5
K02495251 : Ghostscript vulnerability CVE-2018-16509 (VU#332928)
2018-09-26 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2018-256-01)
2022-04-21 00:00:00
CentOS Update for ghostscript CESA-2018:3760 centos6
2018-12-07 00:00:00
Debian: Security Advisory (DLA-1670-1)
2019-02-10 00:00:00
debiancve
debiancve
checkpoint_advisories
checkpoint_advisories
Artifex Ghostscript Remote Code Execution (CVE-2018-16509)
2022-09-18 00:00:00
redhat
redhat
(RHSA-2018:3760) Important: ghostscript security update
2018-12-03 21:13:23
(RHSA-2018:3761) Important: ghostscript security and bug fix update
2018-12-03 21:13:39
(RHSA-2019:1017) Important: ghostscript security update
2019-05-07 15:56:03
slackware
slackware
[slackware-security] ghostscript
2018-09-13 22:03:55
[slackware-security] ghostscript
2019-04-02 21:14:35
cve
cve
centos
centos
ghostscript security update
2018-12-06 18:54:07
ghostscript security update
2018-12-13 20:45:18
ghostscript security update
2019-05-13 15:09:20
fedora
fedora
[SECURITY] Fedora 30 Update: ghostscript-9.26-3.fc30
2019-03-29 19:28:20
[SECURITY] Fedora 29 Update: ghostscript-9.26-3.fc29
2019-03-21 14:41:53
[SECURITY] Fedora 29 Update: ghostscript-9.26-4.fc29
2019-03-31 03:02:07
suse
suse
Security update for ghostscript (important)
2019-01-31 00:00:00
Security update for ghostscript (important)
2019-01-31 00:00:00
alpinelinux
alpinelinux
CVE-2019-6116
2019-03-21 16:01:07
CVE-2018-16802
2018-09-10 16:29:00
ubuntu
ubuntu
Ghostscript vulnerability
2019-01-23 00:00:00
debian
debian
[SECURITY] [DLA 1670-1] ghostscript security update
2019-02-11 08:57:30
[SECURITY] [DSA 4372-1] ghostscript security update
2019-01-26 14:48:51
[SECURITY] [DSA 4372-1] ghostscript security update
2019-01-26 14:48:51
mageia
mageia
Updated ghostscript packages fix a security vulnerability
2019-01-30 22:39:18
Updated ghostscript packages fix security vulnerability
2019-06-10 22:17:03
Updated ghostscript packages fix security vulnerability
2019-04-05 21:12:59
archlinux
archlinux
[ASA-201901-18] ghostscript: sandbox escape
2019-01-29 00:00:00
[ASA-201904-5] ghostscript: sandbox escape
2019-04-11 00:00:00
zdt
zdt
Ghostscript 9.26 - Pseudo-Operator Remote Code Execution Exploit
2019-01-24 00:00:00
oraclelinux
oraclelinux
ghostscript security update
2018-12-03 00:00:00
ghostscript security and bug fix update
2018-12-03 00:00:00
ghostscript security update
2019-05-07 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Ghostscript affect PowerKVM
2018-12-17 14:30:02