Amazon Linux AMI : ghostscript (ALAS-2018-1137)
High Nessus Plugin ID 119815
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionIt was discovered that the ghostscript /invalidaccess checks fail under certain conditions. An attacker could possibly exploit this to bypass the -dSAFER protection and, for example, execute arbitrary shell commands via a specially crafted PostScript document.(CVE-2018-16509)
SolutionRun 'yum update ghostscript' to update your system.