Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the saved execution stack in an error object.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libgs9-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-dbg": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-doc": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-x": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs9": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript-x-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs-dev-dbgsym": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs9-common": "9.25~dfsg+1-0ubuntu0.14.04.2", "ghostscript": "9.25~dfsg+1-0ubuntu0.14.04.2", "libgs-dev": "9.25~dfsg+1-0ubuntu0.14.04.2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libgs9-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-dbg": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-doc": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-x": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs9": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript-x-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs-dev-dbgsym": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs9-common": "9.25~dfsg+1-0ubuntu0.16.04.2", "ghostscript": "9.25~dfsg+1-0ubuntu0.16.04.2", "libgs-dev": "9.25~dfsg+1-0ubuntu0.16.04.2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "ghostscript-dbg": "9.25~dfsg+1-0ubuntu0.18.04.2", "ghostscript-doc": "9.25~dfsg+1-0ubuntu0.18.04.2", "ghostscript-x": "9.25~dfsg+1-0ubuntu0.18.04.2", "libgs9": "9.25~dfsg+1-0ubuntu0.18.04.2", "libgs-dev": "9.25~dfsg+1-0ubuntu0.18.04.2", "libgs9-common": "9.25~dfsg+1-0ubuntu0.18.04.2", "ghostscript": "9.25~dfsg+1-0ubuntu0.18.04.2" } ] }