cbcvebase.
CVE-2016-9601
published 2018-04-24

CVE-2016-9601: ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is…

PriorityP423medium5.5CVSS 3.0
AVLACLPRNUIRSUCNINAH
EPSS
1.81%
76.0th percentile
ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript.

Affected

14 ranges
VendorProductVersion rangeFixed in
artifexgpl_ghostscript< 9.219.21
artifexjbig2dec<= 0.13
artifexjbig2dec>= 0 < 0.13-40.13-4
artifexjbig2dec>= 0 < 0.13-40.13-4
artifexjbig2dec>= 0 < 0.13-40.13-4
artifexjbig2dec>= 0 < 0.13-40.13-4
artifexjbig2dec>= 0 < 0.11+20120125-1ubuntu1.10.11+20120125-1ubuntu1.1
artifexjbig2dec>= 0 < 0.12+20150918-1ubuntu0.10.12+20150918-1ubuntu0.1
debiandebian_linux
debiandebian_linux
debianjbig2dec< jbig2dec 0.13-4 (bookworm)jbig2dec 0.13-4 (bookworm)
pythonpillow>= 0 < 2.3.0-1ubuntu3.42.3.0-1ubuntu3.4
pythonpillow>= 0 < 2.3.0-1ubuntu3.22.3.0-1ubuntu3.2
pythonpillow>= 0 < 3.1.2-0ubuntu1.13.1.2-0ubuntu1.1

CVSS provenance

nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv5.5MEDIUM
vendor_debian5.3MEDIUM
vendor_redhat5.3MEDIUM
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.