CVE-2018-16513

HIGH

Artifex Ghostscript <9.24 - Buffer Overflow

Title source: llm

Description

In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other impact.

References (9)

[Third Party Advisory] https://security.gentoo.org/glsa/201811-12

[Third Party Advisory] https://usn.ubuntu.com/3768-1/

[Patch, Vendor Advisory] https://www.artifex.com/news/ghostscript-security-resolved/

[Issue Tracking, Permissions Required, Vendor Advisory] https://bugs.ghostscript.com/show_bug.cgi?id=699655

[Third Party Advisory] https://www.debian.org/security/2018/dsa-4288

[Patch] http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=b326a71659b7837d3acde954b18bda1a6f5e9498

[Mailing List, Third Party Advisory] https://lists.debian.org/debian-lts-announce/2018/09/msg00015.html

[Patch, Third Party Advisory] https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101

[Vendor Advisory] https://support.f5.com/csp/article/K22141757?utm_source=f5support&amp%3Butm_medium=RSS

Scores

CVSS v3 7.8

EPSS 0.0026

EPSS Percentile 48.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-704

Status published

Products (8)

artifex/ghostscript < 9.24

artifex/gpl_ghostscript < 9.26

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 18.04

debian/debian_linux 8.0

debian/debian_linux 9.0

pulsesecure/pulse_connect_secure 8.2r1.0 - 8.2r12.1

Published Sep 05, 2018

Tracked Since Feb 18, 2026