Lucene search
Veracode Vulnerability DatabaseVERACODE:12570HistoryJan 15, 2019 - 9:18 a.m.
Denial Of Service (DoS)
2019-01-1509:18:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.008 Low
EPSS
Percentile
81.3%
ghostscript is vulnerable to denial of service (DoS) attacks. The vulnerability exists as the mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ghostscript | eq | 9.07__20.el7_3.1 | |
| ghostscript:3.3 | eq | 9.18-r1 |
References
access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html
access.redhat.com/errata/RHSA-2017:2180
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=1411725
bugzilla.redhat.com/show_bug.cgi?id=1424752
bugzilla.redhat.com/show_bug.cgi?id=1436273
Related
nessus
nessus
Fedora 26 : ghostscript (2017-628b627eac)
2017-07-17 00:00:00
EulerOS 2.0 SP2 : ghostscript (EulerOS-SA-2017-1145)
2017-08-08 00:00:00
EulerOS 2.0 SP1 : ghostscript (EulerOS-SA-2017-1144)
2017-08-08 00:00:00
ibm
ibm
Security Bulletin: A vulnerability in Ghostscript affects PowerKVM
2018-06-18 01:37:36
debiancve
debiancve
CVE-2017-7207
2017-03-21 06:59:00
openvas
openvas
RedHat Update for ghostscript RHSA-2017:2180-01
2017-08-04 00:00:00
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2017-1145)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2017-1144)
2020-01-23 00:00:00
redhatcve
redhatcve
CVE-2017-7207
2017-03-21 10:48:13
nvd
nvd
CVE-2017-7207
2017-03-21 06:59:00
prion
prion
Null pointer dereference
2017-03-21 06:59:00
cve
cve
CVE-2017-7207
2017-03-21 06:59:00
ubuntucve
ubuntucve
CVE-2017-7207
2017-03-21 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: ghostscript-9.20-7.fc25
2017-04-09 21:53:39
[SECURITY] Fedora 26 Update: ghostscript-9.20-8.fc26
2017-04-11 13:49:13
[SECURITY] Fedora 24 Update: ghostscript-9.20-7.fc24
2017-04-19 07:53:04
osv
osv
CVE-2017-7207
2017-03-21 06:59:00
ghostscript - security update
2017-04-28 00:00:00
ghostscript - security update
2017-08-01 00:00:00
cvelist
cvelist
CVE-2017-7207
2017-03-21 06:21:00
redhat
redhat
(RHSA-2017:2180) Low: ghostscript security and bug fix update
2017-08-01 05:58:43
centos
centos
ghostscript security update
2017-08-24 01:37:17
alpinelinux
alpinelinux
CVE-2017-7207
2017-03-21 06:59:00
suse
suse
Security update for ghostscript (important)
2017-05-24 21:13:32
Security update for ghostscript (important)
2017-04-29 00:08:58
Security update for ghostscript (important)
2017-05-08 18:15:39
debian
debian
[SECURITY] [DSA 3838-1] ghostscript security update
2017-04-28 11:51:39
[SECURITY] [DSA 3838-1] ghostscript security update
2017-04-28 11:51:39
[SECURITY] [DLA 1048-1] ghostscript security update
2017-08-01 12:41:37
ubuntu
ubuntu
Ghostscript regression
2017-05-16 00:00:00
Ghostscript vulnerabilities
2017-04-28 00:00:00
gentoo
gentoo
GPL Ghostscript: Multiple vulnerabilities
2017-08-21 00:00:00
oraclelinux
oraclelinux
ghostscript security and bug fix update
2017-08-07 00:00:00
mageia
mageia
Updated ghostscript packages fix security vulnerability
2017-05-08 01:16:00