Search CVE reports
211 – 217 of 217 results
CVE-2009-0584
Medium priorityicc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allows context-dependent attackers to cause a...
2 affected packages
ghostscript, gs-gpl
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
gs-gpl | — | — | — | — | — |
CVE-2009-0583
Medium priorityMultiple integer overflows in icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier,...
2 affected packages
ghostscript, gs-gpl
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
gs-gpl | — | — | — | — | — |
CVE-2008-3522
Medium prioritySome fixes available 7 of 8
Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.
2 affected packages
ghostscript, jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
jasper | — | — | — | — | — |
CVE-2008-3521
Negligible prioritySome fixes available 4 of 5
Race condition in the jas_stream_tmpfile function in libjasper/base/jas_stream.c in JasPer 1.900.1 allows local users to cause a denial of service (program exit) by creating the appropriate tmp.XXXXXXXXXX temporary file, which...
2 affected packages
ghostscript, jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
jasper | — | — | — | — | — |
CVE-2008-3520
Low prioritySome fixes available 7 of 8
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
2 affected packages
ghostscript, jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
jasper | — | — | — | — | — |
CVE-2008-0411
Medium priorityStack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.
3 affected packages
ghostscript, gs-esp, gs-gpl
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
gs-esp | — | — | — | — | — |
gs-gpl | — | — | — | — | — |
CVE-2007-2721
Medium priorityThe jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed...
3 affected packages
ghostscript, gs-gpl, jasper
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ghostscript | — | — | — | — | — |
gs-gpl | — | — | — | — | — |
jasper | — | — | — | — | — |