Artifex
artifex
256 CVEs • 10 products
Products (10)
Click to collapseToggle
Products (10)
Click to collapse
CVEs (256)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
3Artifex CanonicalDebian3Debian Linux GhostscriptUbuntu LinuxNov 21, 2024 Aug 13, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. |
3Artifex CanonicalDebian3Debian Linux GhostscriptUbuntu LinuxNov 21, 2024 Aug 13, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer overflow vulnerability in cif_print_page() in devices/gdevcif.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. |
3Artifex CanonicalDebian3Debian Linux GhostscriptUbuntu LinuxNov 21, 2024 Aug 13, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. |
3Artifex CanonicalDebian3Debian Linux GhostscriptUbuntu LinuxNov 21, 2024 Aug 13, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51. |
3Artifex CanonicalOpensuse3Ghostscript LeapUbuntu LinuxNov 21, 2024 Jul 28, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A memory corruption issue was found in Artifex Ghostscript 9.50 and 9.52. Use of a non-standard PostScript operator can allow overriding of file access controls. The 'rsearch' calculation for the 'post' size resulted in...Show more |
3Artifex DebianOpensuse3Debian Linux Jbig2decLeapNov 21, 2024 Apr 27, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 jbig2_image_compose in jbig2_image.c in Artifex jbig2dec before 0.18 has a heap-based buffer overflow. |
2Artifex Sumatrapdfreader2Mupdf SumatrapdfNov 21, 2024 Jan 23, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 SumatraPDF 2.1.1/MuPDF 1.0 allows remote attackers to cause an Integer Overflow in the lex_number() function via a corrupt PDF file. |
2Artifex Fedoraproject2Fedora GhostscriptNov 21, 2024 Nov 27, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted...Show more |
2Artifex Redhat93scale Api Management Enterprise LinuxEnterprise Linux Desktop+6 moreNov 21, 2024 Nov 27, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially cra...Show more |
3Artifex FedoraprojectOpensuse3Fedora GhostscriptLeapNov 21, 2024 Nov 15, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker coul...Show more |
5Artifex DebianFedoraproject+2 more12Debian Linux Enterprise LinuxEnterprise Linux Desktop+9 moreNov 21, 2024 Sep 6, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted Po...Show more |
5Artifex DebianFedoraproject+2 more5Debian Linux FedoraGhostscript+2 moreNov 21, 2024 Sep 3, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially cra...Show more |
5Artifex DebianFedoraproject+2 more5Debian Linux FedoraGhostscript+2 moreNov 21, 2024 Sep 3, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafte...Show more |
Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string. |
Artifex MuPDF 1.15.0 has a heap-based buffer overflow in fz_append_display_node located at fitz/list-device.c, allowing remote attackers to execute arbitrary code via a crafted PDF file. This occurs with a large BDC prop...Show more |
Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code. |
An issue was discovered in Artifex MuJS 1.0.5. regcompx in regexp.c does not restrict regular expression program size, leading to an overflow of the parsed syntax list size. |
Artifex Ghostscript 9.22 is affected by: Obtain Information. The impact is: obtain sensitive information. The component is: affected source code file, affected function, affected executable, affected libga (imagemagick u...Show more |
6Artifex CanonicalDebian+3 more6Debian Linux Enterprise LinuxFedora+3 moreNov 21, 2024 May 16, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have acces...Show more |
An issue was discovered in Artifex MuJS 1.0.5. It has unlimited recursion because the match function in regexp.c lacks a depth check. |