An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction. This is due to an incomplete fix for CVE-2018-16509.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-09-10T16:00:00
Updated: 2024-08-05T10:32:53.992Z
Reserved: 2018-09-10T00:00:00
Link: CVE-2018-16802
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-09-10T16:29:00.950
Modified: 2024-11-21T03:53:22.593
Link: CVE-2018-16802
Redhat