CVE-2018-15910Incorrect Type Conversion or Cast in Ghostscript

CWE-704Incorrect Type Conversion or CastCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents8 sources
Severity
7.8HIGHNVD
EPSS
4.8%
top 10.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Artifex GhostscriptArtifex GPL GhostscriptPulsesecure Pulse Connect Secure+6 more
Timeline
PublishedAug 27
Latest updateMay 13

Description

In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages7 packages

Debianartifex/ghostscript< 9.22~dfsg-3+3
NVDpulsesecure/pulse_connect_secure8.2r1.08.2r12.1+2

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04, Enterprise Linux 7.5

Patches

Patch: kb.pulsesecure.netPatch: www.kb.cert.orgPatch: kb.pulsesecure.net

🔴Vulnerability Details

3
GHSA
GHSA-wx5g-j2w9-qx59: In Artifex Ghostscript before 92022-05-13
OSV
CVE-2018-15910: In Artifex Ghostscript before 92018-08-27
CVEList
CVE-2018-15910: In Artifex Ghostscript before 92018-08-27

📋Vendor Advisories

4
Ubuntu
Ghostscript vulnerabilities2018-09-19
Red Hat
ghostscript: .setdistillerkeys PostScript command is accepted even though it is not intended for use2018-09-06
Red Hat
ghostscript: LockDistillerParams type confusion (699656)2018-08-21
Debian
CVE-2018-15910: ghostscript - In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript ...2018

💬Community

2
Bugzilla
CVE-2018-15910 ghostscript: LockDistillerParams type confusion (699656) [fedora-all]2018-11-28
Bugzilla
CVE-2018-15910 ghostscript: LockDistillerParams type confusion (699656)2018-08-21
CVE-2018-15910 — Incorrect Type Conversion or Cast | cvebase