CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-14813

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0060%
EPSS Percentile16.35th
Published2019年9月6日
Last Modified2024年11月21日

Vulnerability Description

A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.

Affected Platforms (CPE)

📦
Artifex

Ghostscript

>= 9.00 and <= 9.50
📦
Redhat

Openshift Container Platform

= 3.11
📦
Redhat

Openshift Container Platform

= 4.1
💻
Redhat

Enterprise Linux

= 7.0
💻
Redhat

Enterprise Linux

= 8.0
💻
Redhat

Enterprise Linux Desktop

= 7.0
💻
Redhat

Enterprise Linux Server

= 7.0
💻
Redhat

Enterprise Linux Server Aus

= 7.7
💻
Redhat

Enterprise Linux Server Eus

= 7.7
💻
Redhat

Enterprise Linux Server Tus

= 7.7
💻
Redhat

Enterprise Linux Workstation

= 7.0
💻
Fedoraproject

Fedora

= 29
💻
Fedoraproject

Fedora

= 30
💻
Fedoraproject

Fedora

= 31
💻
Opensuse

Leap

= 15.0
💻
Opensuse

Leap

= 15.1
💻
Debian

Debian Linux

= 8.0
💻
Debian

Debian Linux

= 9.0
💻
Debian

Debian Linux

= 10.0

References & Advisories

🔗 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33
🔗 http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html
🔗 http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html
🔗 https://access.redhat.com/errata/RHBA-2019:2824
🔗 https://access.redhat.com/errata/RHSA-2019:2594
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813
🔗 https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html
🔗 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/

相关漏洞威胁

CVE-2021-37819.9

A trivial sandbox (enabled with the `-dSAFER` option) escape flaw was found in the ghostscript interpreter by injecting a speciall...

CVE-2020-276059.8

BigBlueButton through 2.2.28 uses Ghostscript for processing of uploaded EPS documents, and consequently may be subject to attacks...

CVE-2020-159009.8

A memory corruption issue was found in Artifex Ghostscript 9.50 and 9.52. Use of a non-standard PostScript operator can allow over...

CVE-2020-367739.8

Artifex Ghostscript before 9.53.0 has an out-of-bounds write and use-after-free in devices/vector/gdevtxtw.c (for txtwrite) becaus...