#VU93815 Heap-based buffer overflow in Ghostscript


Published: 2024-07-05

Vulnerability identifier: #VU93815

Vulnerability risk: High

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-29508

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Ghostscript
Universal components / Libraries / Libraries used by multiple products

Vendor: Artifex Software, Inc.

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the pdf_base_font_alloc() function. A remote attacker can pass specially crafted PDF file to the application, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Ghostscript: 9.00 - 10.02.1

External links
http://bugs.ghostscript.com/show_bug.cgi?id=707510
http://git.ghostscript.com/?p=ghostpdl.git%3Bh=ff1013a0ab485b66783b70145e342a82c670906a
http://www.openwall.com/lists/oss-security/2024/07/03/7

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Debian update for ghostscript
Fedora 39 update for ghostscript
Fedora 40 update for ghostscript
Fedora 39 update for ghostscript
Fedora 40 update for ghostscript
SUSE update for ghostscript
SUSE update for ghostscript
Ubuntu update for ghostscript
Multiple vulnerabilities in Artifex Ghostscript