CVE-2018-19409
published 2018-11-21CVE-2018-19409: An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used.
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | ghostscript | < 9.26 | 9.26 |
| artifex | ghostscript | >= 0 < 9.26~dfsg-1 | 9.26~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.26~dfsg-1 | 9.26~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.26~dfsg-1 | 9.26~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.26~dfsg-1 | 9.26~dfsg-1 |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | ghostscript | < ghostscript 9.26~dfsg-1 (bookworm) | ghostscript 9.26~dfsg-1 (bookworm) |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server_aus | — | — |
| redhat | enterprise_linux_server_eus | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL