Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2018-17183.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libgs9-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-dbg": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-doc": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-x": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs9": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-x-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs-dev-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs9-common": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs-dev": "9.25~dfsg+1-0ubuntu0.14.04.2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libgs9-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-dbg": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-doc": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-x": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs9": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-x-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs-dev-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs9-common": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs-dev": "9.25~dfsg+1-0ubuntu0.16.04.2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "ghostscript-dbg": "9.25~dfsg+1-0ubuntu0.18.04.2", "ghostscript-doc": "9.25~dfsg+1-0ubuntu0.18.04.2", "ghostscript-x": "9.25~dfsg+1-0ubuntu0.18.04.2", "libgs9": "9.25~dfsg+1-0ubuntu0.18.04.2", "libgs-dev": "9.25~dfsg+1-0ubuntu0.18.04.2", "libgs9-common": "9.25~dfsg+1-0ubuntu0.18.04.2", "ghostscript": "9.25~dfsg+1-0ubuntu0.18.04.2" } ] }