CVE-2022-2085
published 2022-06-16CVE-2022-2085: A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an init_device_procs defined for the device that uses it as a prototype that depends upon the number of bits per pixel. For bpp > 64, mem_x_device is used and does not have an init_device_procs defined. This flaw allows an attacker to parse a large number of bits (more than 64 bits per pixel), which triggers a NULL pointer dereference flaw, causing an application to crash.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | ghostscript | — | — |
| artifex | ghostscript | — | — |
| artifex | ghostscript | >= 0 < 9.56.0~dfsg-1 | 9.56.0~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.56.0~dfsg-1 | 9.56.0~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.56.0~dfsg-1 | 9.56.0~dfsg-1 |
| artifex | ghostscript | >= 0 < 9.26~dfsg+0-0ubuntu0.18.04.17 | 9.26~dfsg+0-0ubuntu0.18.04.17 |
| artifex | ghostscript | >= 0 < 9.50~dfsg-5ubuntu4.6 | 9.50~dfsg-5ubuntu4.6 |
| artifex | ghostscript | >= 0 < 9.55.0~dfsg1-0ubuntu5.1 | 9.55.0~dfsg1-0ubuntu5.1 |
| debian | ghostscript | < ghostscript 9.56.0~dfsg-1 (bookworm) | ghostscript 9.56.0~dfsg-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv7.1HIGH