openSUSE 10 Security Update : ghostscript-devel (ghostscript-devel-6065)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

Integer overflows and missing upper bounds checks in Ghostscript's ICC
library potentially allowed attackers to crash Ghostscript or even
cause execution of arbitrary code via specially crafted PS or PDF
files (CVE-2009-0583, CVE-2009-0584).

Solution :

Update the affected ghostscript-devel packages.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 36004 ()

Bugtraq ID:

CVE ID: CVE-2009-0583
CVE-2009-0584

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now