CVE-2020-21890
published 2023-08-22CVE-2020-21890: Buffer Overflow vulnerability in clj_media_size function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attackers to cause a denial of service…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Buffer Overflow vulnerability in clj_media_size function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attackers to cause a denial of service or other unspecified impact(s) via opening of crafted PDF document.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | ghostscript | — | — |
| artifex | ghostscript | >= 0 < 9.51~dfsg-1 | 9.51~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.51~dfsg-1 | 9.51~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.51~dfsg-1 | 9.51~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.51~dfsg-1 | 9.51~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.50~dfsg-5ubuntu4.10 | 9.50~dfsg-5ubuntu4.10 |
| artifex | ghostscript | >= 0 < 9.26~dfsg+0-0ubuntu0.16.04.14+esm7 | 9.26~dfsg+0-0ubuntu0.16.04.14+esm7 |
| artifex | ghostscript | >= 0 < 9.26~dfsg+0-0ubuntu0.18.04.18+esm2 | 9.26~dfsg+0-0ubuntu0.18.04.18+esm2 |
| debian | ghostscript | < ghostscript 9.51~dfsg-1 (bookworm) | ghostscript 9.51~dfsg-1 (bookworm) |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH