Pro-Linux

Sicherheit: Ausführen beliebiger Kommandos in ghostscript

Plattformen: SUSE Manager Proxy 4.3, SUSE Enterprise Storage 7.1, SUSE Manager Server 4.3, SUSE Manager Retail Branch Server 4.3, SUSE Linux Enterprise High Performance Computing 15 SP3, SUSE Linux ...
Pro-Linux

Sicherheit: Ausführen beliebiger Kommandos in ghostscript-library

Plattformen: SUSE Linux Enterprise Software Development Kit 11-SP4, SUSE Linux Enterprise Server 11-SP4, SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE OpenStack ...
Simon Fraser University

[linux-security] ghostscript allows execution of arbitrary code

Topic ===== ghostscript can be tricked into executing arbitrary code Problem Description ===== An untrusted PostScript file can cause ghostscript to execute arbitrary commands due to insufficient ...
Bleeping Computer

Critical RCE found in popular Ghostscript open-source PDF library

Ghostscript, an open-source interpreter for PostScript language and PDF files widely used in Linux, has been found vulnerable to a critical-severity remote code execution flaw. The flaw is tracked as ...
heise online

Ghostscript: Code smuggling loophole is attacked

IT security researchers have discovered five security vulnerabilities in Ghostscript. Attackers can, for example, bypass the sandbox and execute arbitrary code. A proof-of-concept exploit is publicly ...