A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service.

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1852 advisory.

  - A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker     could supply a specially crafted PDF file to cause a denial of service. (CVE-2020-14373)

  - A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16287)

  - A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16288)

  - A buffer overflow vulnerability in cif_print_page() in devices/gdevcif.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16289)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16290)

  - A buffer overflow vulnerability in contrib/gdevdj9.c of Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16291)

  - A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16292)

  - A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common()     in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16293)

  - A buffer overflow vulnerability in epsc_print_page() in devices/gdevepsc.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16294)

  - A null pointer dereference vulnerability in clj_media_size() in devices/gdevclj.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16295)

  - A buffer overflow vulnerability in GetNumWrongData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16296)

  - A buffer overflow vulnerability in FloydSteinbergDitheringC() in contrib/gdevbjca.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16297)

  - A buffer overflow vulnerability in mj_color_correct() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16298)

  - A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16299)

  - A buffer overflow vulnerability in tiff12_print_page() in devices/gdevtfnx.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16300)

  - A buffer overflow vulnerability in okiibm_print_page1() in devices/gdevokii.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16301)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16302)

  - A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16303)

  - A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in     v9.51. (CVE-2020-16304)

  - A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16305)

  - A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in     v9.51. (CVE-2020-16306)

  - A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file.
    This is fixed in v9.51. (CVE-2020-16307)

  - A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16308)

  - A buffer overflow vulnerability in lxm5700m_print_page() in devices/gdevlxm.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted eps file. This is     fixed in v9.51. (CVE-2020-16309)

  - A division by zero vulnerability in dot24_print_page() in devices/gdevdm24.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16310)

  - A buffer overflow vulnerability in GetNumSameData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-17538)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote NewStart CGSL host, running version MAIN 6.02, has ghostscript packages installed that are affected by multiple vulnerabilities:

  - A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker     could supply a specially crafted PDF file to cause a denial of service. (CVE-2020-14373)

  - A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16287)

  - A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16288)

  - A buffer overflow vulnerability in cif_print_page() in devices/gdevcif.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16289)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16290)

  - A buffer overflow vulnerability in contrib/gdevdj9.c of Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16291)

  - A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16292)

  - A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common()     in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16293)

  - A buffer overflow vulnerability in epsc_print_page() in devices/gdevepsc.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16294)

  - A null pointer dereference vulnerability in clj_media_size() in devices/gdevclj.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16295)

  - A buffer overflow vulnerability in GetNumWrongData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16296)

  - A buffer overflow vulnerability in FloydSteinbergDitheringC() in contrib/gdevbjca.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16297)

  - A buffer overflow vulnerability in mj_color_correct() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16298)

  - A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16299)

  - A buffer overflow vulnerability in tiff12_print_page() in devices/gdevtfnx.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16300)

  - A buffer overflow vulnerability in okiibm_print_page1() in devices/gdevokii.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16301)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16302)

  - A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16303)

  - A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in     v9.51. (CVE-2020-16304)

  - A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16305)

  - A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in     v9.51. (CVE-2020-16306)

  - A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file.
    This is fixed in v9.51. (CVE-2020-16307)

  - A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16308)

  - A buffer overflow vulnerability in lxm5700m_print_page() in devices/gdevlxm.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted eps file. This is     fixed in v9.51. (CVE-2020-16309)

  - A division by zero vulnerability in dot24_print_page() in devices/gdevdm24.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16310)

  - A buffer overflow vulnerability in GetNumSameData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-17538)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:1852 advisory.

  - A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker     could supply a specially crafted PDF file to cause a denial of service. (CVE-2020-14373)

  - A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16287)

  - A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16288)

  - A buffer overflow vulnerability in cif_print_page() in devices/gdevcif.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16289)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16290)

  - A buffer overflow vulnerability in contrib/gdevdj9.c of Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16291)

  - A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16292)

  - A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common()     in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16293)

  - A buffer overflow vulnerability in epsc_print_page() in devices/gdevepsc.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16294)

  - A null pointer dereference vulnerability in clj_media_size() in devices/gdevclj.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16295)

  - A buffer overflow vulnerability in GetNumWrongData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16296)

  - A buffer overflow vulnerability in FloydSteinbergDitheringC() in contrib/gdevbjca.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16297)

  - A buffer overflow vulnerability in mj_color_correct() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16298)

  - A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16299)

  - A buffer overflow vulnerability in tiff12_print_page() in devices/gdevtfnx.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16300)

  - A buffer overflow vulnerability in okiibm_print_page1() in devices/gdevokii.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16301)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16302)

  - A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16303)

  - A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in     v9.51. (CVE-2020-16304)

  - A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16305)

  - A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in     v9.51. (CVE-2020-16306)

  - A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file.
    This is fixed in v9.51. (CVE-2020-16307)

  - A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16308)

  - A buffer overflow vulnerability in lxm5700m_print_page() in devices/gdevlxm.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted eps file. This is     fixed in v9.51. (CVE-2020-16309)

  - A division by zero vulnerability in dot24_print_page() in devices/gdevdm24.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16310)

  - A buffer overflow vulnerability in GetNumSameData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-17538)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1852 advisory.

  - A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker     could supply a specially crafted PDF file to cause a denial of service. (CVE-2020-14373)

  - A buffer overflow vulnerability in cif_print_page() in devices/gdevcif.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16289)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16290)

  - A buffer overflow vulnerability in GetNumWrongData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16296)

  - A buffer overflow vulnerability in FloydSteinbergDitheringC() in contrib/gdevbjca.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16297)

  - A buffer overflow vulnerability in mj_color_correct() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16298)

  - A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in     v9.51. (CVE-2020-16304)

  - A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in     v9.51. (CVE-2020-16306)

  - A division by zero vulnerability in dot24_print_page() in devices/gdevdm24.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16310)

  - A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16287)

  - A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16288)

  - A buffer overflow vulnerability in contrib/gdevdj9.c of Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16291)

  - A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16292)

  - A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common()     in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in v9.51. (CVE-2020-16293)

  - A buffer overflow vulnerability in epsc_print_page() in devices/gdevepsc.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16294)

  - A null pointer dereference vulnerability in clj_media_size() in devices/gdevclj.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16295)

  - A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16299)

  - A buffer overflow vulnerability in tiff12_print_page() in devices/gdevtfnx.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16300)

  - A buffer overflow vulnerability in okiibm_print_page1() in devices/gdevokii.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16301)

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16302)

  - A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16303)

  - A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-16305)

  - A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file.
    This is fixed in v9.51. (CVE-2020-16307)

  - A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in     v9.51. (CVE-2020-16308)

  - A buffer overflow vulnerability in lxm5700m_print_page() in devices/gdevlxm.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted eps file. This is     fixed in v9.51. (CVE-2020-16309)

  - A buffer overflow vulnerability in GetNumSameData() in contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is     fixed in v9.51. (CVE-2020-17538)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1852 advisory.

  - ghostscript: use-after-free vulnerability in igc_reloc_struct_ptr() could result in DoS (CVE-2020-14373)

  - ghostscript: buffer overflow in lprn_is_black() in contrib/lips4/gdevlprn.c could result in a DoS     (CVE-2020-16287)

  - ghostscript: buffer overflow in pj_common_print_page() in devices/gdevpjet.c could result in a DoS     (CVE-2020-16288)

  - ghostscript: buffer overflow in cif_print_page() in devices/gdevcif.c could result in a DoS     (CVE-2020-16289)

  - ghostscript: buffer overflow in jetp3852_print_page() in devices/gdev3852.c could result in a DoS     (CVE-2020-16290)

  - ghostscript: buffer overflow in contrib/gdevdj9.c could result in a DoS (CVE-2020-16291)

  - ghostscript: buffer overflow in mj_raster_cmd() in contrib/japanese/gdevmjc.c could result in a DoS     (CVE-2020-16292)

  - ghostscript: NULL pointer dereference in compose_group_nonknockout_nonblend_isolated_allmask_common() in     base/gxblend.c could result in a DoS (CVE-2020-16293)

  - ghostscript: buffer overflow in epsc_print_page() in devices/gdevepsc.c could result in a DoS     (CVE-2020-16294)

  - ghostscript: NULL pointer dereference in clj_media_size() in devices/gdevclj.c could result in a DoS     (CVE-2020-16295)

  - ghostscript: buffer overflow in GetNumWrongData() in contrib/lips4/gdevlips.c could result in a DoS     (CVE-2020-16296)

  - ghostscript: buffer overflow in FloydSteinbergDitheringC() in contrib/gdevbjca.c could result in a DoS     (CVE-2020-16297)

  - ghostscript: buffer overflow in mj_color_correct() in contrib/japanese/gdevmjc.c could result in a DoS     (CVE-2020-16298)

  - ghostscript: division by zero in bj10v_print_page() in contrib/japanese/gdev10v.c could result in a DoS     (CVE-2020-16299)

  - ghostscript: buffer overflow in tiff12_print_page() in devices/gdevtfnx.c could result in a DoS     (CVE-2020-16300)

  - ghostscript: buffer overflow in okiibm_print_page1() in devices/gdevokii.c could result in a DoS     (CVE-2020-16301)

  - ghostscript: buffer overflow in jetp3852_print_page() in devices/gdev3852.c could result in a privilege     escalation (CVE-2020-16302)

  - ghostscript: use-after-free in xps_finish_image_path() in devices/vector/gdevxps.c could result in a     privilege escalation (CVE-2020-16303)

  - ghostscript: buffer overflow in image_render_color_thresh() in base/gxicolor.c could result in a DoS     (CVE-2020-16304)

  - ghostscript: buffer overflow in pcx_write_rle() in contrib/japanese/gdev10v.c could result in a DoS     (CVE-2020-16305)

  - ghostscript: NULL pointer dereference in devices/gdevtsep.c could result in a DoS (CVE-2020-16306)

  - ghostscript: NULL pointer dereference in devices/vector/gdevtxtw.c and psi/zbfont.c could result in a DoS     (CVE-2020-16307)

  - ghostscript: buffer overflow in p_print_image() in devices/gdevcdj.c could result in a DoS     (CVE-2020-16308)

  - ghostscript: buffer overflow in lxm5700m_print_page() in devices/gdevlxm.c could result in a DoS     (CVE-2020-16309)

  - ghostscript: division by zero in dot24_print_page() in devices/gdevdm24.c could result in a DoS     (CVE-2020-16310)

  - ghostscript: buffer overflow in GetNumSameData() in contrib/lips4/gdevlips.c could result in a DoS     (CVE-2020-17538)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1852 advisory.

  - ghostscript: use-after-free vulnerability in igc_reloc_struct_ptr() could result in DoS (CVE-2020-14373)

  - ghostscript: buffer overflow in lprn_is_black() in contrib/lips4/gdevlprn.c could result in a DoS     (CVE-2020-16287)

  - ghostscript: buffer overflow in pj_common_print_page() in devices/gdevpjet.c could result in a DoS     (CVE-2020-16288)

  - ghostscript: buffer overflow in cif_print_page() in devices/gdevcif.c could result in a DoS     (CVE-2020-16289)

  - ghostscript: buffer overflow in jetp3852_print_page() in devices/gdev3852.c could result in a DoS     (CVE-2020-16290)

  - ghostscript: buffer overflow in contrib/gdevdj9.c could result in a DoS (CVE-2020-16291)

  - ghostscript: buffer overflow in mj_raster_cmd() in contrib/japanese/gdevmjc.c could result in a DoS     (CVE-2020-16292)

  - ghostscript: NULL pointer dereference in compose_group_nonknockout_nonblend_isolated_allmask_common() in     base/gxblend.c could result in a DoS (CVE-2020-16293)

  - ghostscript: buffer overflow in epsc_print_page() in devices/gdevepsc.c could result in a DoS     (CVE-2020-16294)

  - ghostscript: NULL pointer dereference in clj_media_size() in devices/gdevclj.c could result in a DoS     (CVE-2020-16295)

  - ghostscript: buffer overflow in GetNumWrongData() in contrib/lips4/gdevlips.c could result in a DoS     (CVE-2020-16296)

  - ghostscript: buffer overflow in FloydSteinbergDitheringC() in contrib/gdevbjca.c could result in a DoS     (CVE-2020-16297)

  - ghostscript: buffer overflow in mj_color_correct() in contrib/japanese/gdevmjc.c could result in a DoS     (CVE-2020-16298)

  - ghostscript: division by zero in bj10v_print_page() in contrib/japanese/gdev10v.c could result in a DoS     (CVE-2020-16299)

  - ghostscript: buffer overflow in tiff12_print_page() in devices/gdevtfnx.c could result in a DoS     (CVE-2020-16300)

  - ghostscript: buffer overflow in okiibm_print_page1() in devices/gdevokii.c could result in a DoS     (CVE-2020-16301)

  - ghostscript: buffer overflow in jetp3852_print_page() in devices/gdev3852.c could result in a privilege     escalation (CVE-2020-16302)

  - ghostscript: use-after-free in xps_finish_image_path() in devices/vector/gdevxps.c could result in a     privilege escalation (CVE-2020-16303)

  - ghostscript: buffer overflow in image_render_color_thresh() in base/gxicolor.c could result in a DoS     (CVE-2020-16304)

  - ghostscript: buffer overflow in pcx_write_rle() in contrib/japanese/gdev10v.c could result in a DoS     (CVE-2020-16305)

  - ghostscript: NULL pointer dereference in devices/gdevtsep.c could result in a DoS (CVE-2020-16306)

  - ghostscript: NULL pointer dereference in devices/vector/gdevtxtw.c and psi/zbfont.c could result in a DoS     (CVE-2020-16307)

  - ghostscript: buffer overflow in p_print_image() in devices/gdevcdj.c could result in a DoS     (CVE-2020-16308)

  - ghostscript: buffer overflow in lxm5700m_print_page() in devices/gdevlxm.c could result in a DoS     (CVE-2020-16309)

  - ghostscript: division by zero in dot24_print_page() in devices/gdevdm24.c could result in a DoS     (CVE-2020-16310)

  - ghostscript: buffer overflow in GetNumSameData() in contrib/lips4/gdevlips.c could result in a DoS     (CVE-2020-17538)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to the versions of the ghostscript packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities :

  - A buffer overflow vulnerability in     jetp3852_print_page() in devices/gdev3852.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     escalate privileges via a crafted PDF file. This is     fixed in v9.51.(CVE-2020-16302)

  - A use-after-free vulnerability in     xps_finish_image_path() in devices/vector/gdevxps.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to escalate privileges via a crafted PDF file.
    This is fixed in v9.51.(CVE-2020-16303)

  - A use after free was found in igc_reloc_struct_ptr() of     psi/igc.c of ghostscript-9.25. A local attacker could     supply a specially crafted PDF file to cause a denial     of service.(CVE-2020-14373)

  - A buffer overflow vulnerability in GetNumSameData() in     contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-17538)

  - A division by zero vulnerability in dot24_print_page()     in devices/gdevdm24.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16310)

  - A buffer overflow vulnerability in     lxm5700m_print_page() in devices/gdevlxm.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted eps file. This     is fixed in v9.51.(CVE-2020-16309)

  - A buffer overflow vulnerability in p_print_image() in     devices/gdevcdj.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service     via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16308)

  - A null pointer dereference vulnerability in     devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted postscript     file. This is fixed in v9.51.(CVE-2020-16307)

  - A null pointer dereference vulnerability in     devices/gdevtsep.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted postscript file. This is fixed in     v9.51.(CVE-2020-16306)

  - A buffer overflow vulnerability in pcx_write_rle() in     contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-16305)

  - A buffer overflow vulnerability in     image_render_color_thresh() in base/gxicolor.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to escalate privileges via a crafted eps file.
    This is fixed in v9.51.(CVE-2020-16304)

  - A buffer overflow vulnerability in okiibm_print_page1()     in devices/gdevokii.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16301)

  - A buffer overflow vulnerability in tiff12_print_page()     in devices/gdevtfnx.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16300)

  - A Division by Zero vulnerability in bj10v_print_page()     in contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-16299)

  - A buffer overflow vulnerability in mj_color_correct()     in contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-16298)

  - A buffer overflow vulnerability in     FloydSteinbergDitheringC() in contrib/gdevbjca.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. This is fixed in v9.51.(CVE-2020-16297)

  - A buffer overflow vulnerability in GetNumWrongData() in     contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-16296)

  - A null pointer dereference vulnerability in     clj_media_size() in devices/gdevclj.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file. This     is fixed in v9.51.(CVE-2020-16295)

  - A buffer overflow vulnerability in epsc_print_page() in     devices/gdevepsc.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16294)

  - A null pointer dereference vulnerability in     compose_group_nonknockout_nonblend_isolated_allmask_com     mon() in base/gxblend.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16293)

  - A buffer overflow vulnerability in mj_raster_cmd() in     contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-16292)

  - A buffer overflow vulnerability in contrib/gdevdj9.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. This is fixed in v9.51.(CVE-2020-16291)

  - A buffer overflow vulnerability in     jetp3852_print_page() in devices/gdev3852.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file. This     is fixed in v9.51.(CVE-2020-16290)

  - A buffer overflow vulnerability in cif_print_page() in     devices/gdevcif.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service     via a crafted PDF file. This is fixed in     v9.51.(CVE-2020-16289)

  - A buffer overflow vulnerability in     pj_common_print_page() in devices/gdevpjet.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file. This     is fixed in v9.51.(CVE-2020-16288)

  - A buffer overflow vulnerability in lprn_is_black() in     contrib/lips4/gdevlprn.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file. This is fixed     in v9.51.(CVE-2020-16287)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - This package provides useful conversion utilities based     on Ghostscript software, for converting PS, PDF and     other document formats between each other. Ghostscript     is a suite of software providing an interpreter for     Adobe Systems' PostScript (PS) and Portable Document     Format (PDF) page description languages. Its primary     purpose includes displaying (rasterization & rendering)     and printing of document pages, as well as conversions     between different document formats.Security Fix(es):A     buffer overflow vulnerability in GetNumSameData() in     contrib/lips4/gdevlips.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file.
    (CVE-2020-17538)A division by zero vulnerability in     dot24_print_page() in devices/gdevdm24.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file.
    (CVE-2020-16310)A buffer overflow vulnerability in     lxm5700m_print_page() in devices/gdevlxm.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted eps file.
    (CVE-2020-16309)A buffer overflow vulnerability in     p_print_image() in devices/gdevcdj.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file.
    (CVE-2020-16308)A null pointer dereference     vulnerability in devices/vector/gdevtxtw.c and     psi/zbfont.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service     via a crafted postscript file. (CVE-2020-16307)A null     pointer dereference vulnerability in devices/gdevtsep.c     of Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted     postscript file. (CVE-2020-16306)A buffer overflow     vulnerability in pcx_write_rle() in     contrib/japanese/gdev10v.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file.
    (CVE-2020-16305)A buffer overflow vulnerability in     image_render_color_thresh() in base/gxicolor.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to escalate privileges via a crafted eps file.
    (CVE-2020-16304)A buffer overflow vulnerability in     okiibm_print_page1() in devices/gdevokii.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file.
    (CVE-2020-16301)A buffer overflow vulnerability in     tiff12_print_page() in devices/gdevtfnx.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file.
    (CVE-2020-16300)A Division by Zero vulnerability in     bj10v_print_page() in contrib/japanese/gdev10v.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. (CVE-2020-16299)A buffer overflow vulnerability     in mj_color_correct() in contrib/japanese/gdevmjc.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. (CVE-2020-16298)A buffer overflow vulnerability     in FloydSteinbergDitheringC() in contrib/gdevbjca.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. (CVE-2020-16297)A buffer overflow vulnerability     in GetNumWrongData() in contrib/lips4/gdevlips.c of     Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. (CVE-2020-16296)A null pointer dereference     vulnerability in clj_media_size() in devices/gdevclj.c     of Artifex Software GhostScript v9.50 allows a remote     attacker to cause a denial of service via a crafted PDF     file. (CVE-2020-16295)A buffer overflow vulnerability     in epsc_print_page() in devices/gdevepsc.c of Artifex     Software GhostScript v9.50 allows a remote attacker to     cause a denial of service via a crafted PDF file.
    (CVE-2020-16294)A null pointer dereference     vulnerability in     compose_group_nonknockout_nonblend_isolated_allmask_com     mon() in base/gxblend.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. (CVE-2020-16293)A     buffer overflow vulnerability in mj_raster_cmd() in     contrib/japanese/gdevmjc.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file.
    (CVE-2020-16292)A buffer overflow vulnerability in     contrib/gdevdj9.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service     via a crafted PDF file. (CVE-2020-16291)A buffer     overflow vulnerability in jetp3852_print_page() in     devices/gdev3852.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. (CVE-2020-16290)A     buffer overflow vulnerability in cif_print_page() in     devices/gdevcif.c of Artifex Software GhostScript v9.50     allows a remote attacker to cause a denial of service     via a crafted PDF file. (CVE-2020-16289)A buffer     overflow vulnerability in pj_common_print_page() in     devices/gdevpjet.c of Artifex Software GhostScript     v9.50 allows a remote attacker to cause a denial of     service via a crafted PDF file. (CVE-2020-16288)A     buffer overflow vulnerability in lprn_is_black() in     contrib/lips4/gdevlprn.c of Artifex Software     GhostScript v9.50 allows a remote attacker to cause a     denial of service via a crafted PDF file.
    (CVE-2020-16287)A use after free was found in     igc_reloc_struct_ptr() of psi/igc.c of     ghostscript-9.25. A local attacker could supply a     specially crafted PDF file to cause a denial of     service.(CVE-2020-14373)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

ID	Name	Product	Family	Severity
184723	Rocky Linux 8 : ghostscript (RLSA-2021:1852)	Nessus	Rocky Linux Local Security Checks	high
167479	NewStart CGSL MAIN 6.02 : ghostscript Multiple Vulnerabilities (NS-SA-2022-0096)	Nessus	NewStart CGSL Local Security Checks	high
157475	AlmaLinux 8 : ghostscript (ALSA-2021:1852)	Nessus	Alma Linux Local Security Checks	high
149960	Oracle Linux 8 : ghostscript (ELSA-2021-1852)	Nessus	Oracle Linux Local Security Checks	high
149766	CentOS 8 : ghostscript (CESA-2021:1852)	Nessus	CentOS Local Security Checks	high
149709	RHEL 8 : ghostscript (RHSA-2021:1852)	Nessus	Red Hat Local Security Checks	high
147094	EulerOS Virtualization for ARM 64 3.0.6.0 : ghostscript (EulerOS-SA-2021-1539)	Nessus	Huawei Local Security Checks	high
142175	EulerOS 2.0 SP8 : ghostscript (EulerOS-SA-2020-2309)	Nessus	Huawei Local Security Checks	medium

Detections

Analytics

CVE-2020-14373

medium

Tenable Plugins

high

high

high

high

high

high

high

medium