CVE-2020-21710 — Divide By Zero in Ghostscript

CWE-369 — Divide By Zero8 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

0.4%

top 40.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Artifex Ghostscript

Timeline

PublishedAug 22

Latest updateSep 13

Description

A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote attackers to cause a denial of service via opening of crafted PDF file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶Debianartifex/ghostscript< 9.51~dfsg-1+3

▶Ubuntuartifex/ghostscript< 9.50~dfsg-5ubuntu4.10+2

▶NVDartifex/ghostscript9.50

Patches

Patch: bugs.ghostscript.com ↗Patch: bugs.ghostscript.com ↗

🔴Vulnerability Details

OSV

ghostscript vulnerabilities↗2023-09-13

▶

GHSA

GHSA-f3hj-4f92-87v9: A divide by zero issue discovered in eps_print_page in gdevepsn↗2023-08-22

▶

OSV

CVE-2020-21710: A divide by zero issue discovered in eps_print_page in gdevepsn↗2023-08-22

▶

CVEList

CVE-2020-21710: A divide by zero issue discovered in eps_print_page in gdevepsn↗2023-08-22

▶

📋Vendor Advisories

Ubuntu

Ghostscript vulnerabilities↗2023-09-13

▶

Red Hat

ghostscript: Divide by zero in eps_print_page in gdevepsn.c↗2023-08-22

▶

Debian

CVE-2020-21710: ghostscript - A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Sof...↗2020

▶