CVE-2023-46751: An issue was discovered in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript through 10.02.0 allows remote attackers to crash the…

high7.5CVSS 3.1

AVNACLPRNUINSUCNINAH

An issue was discovered in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript through 10.02.0 allows remote attackers to crash the application via a dangling pointer.

Affected

20 ranges

Vendor	Product	Version range	Fixed in
artifex	ghostscript	<= 10.02.0	—
artifex	ghostscript	>= 0 < 10.0.0~dfsg-11+deb12u3	10.0.0~dfsg-11+deb12u3
artifex	ghostscript	>= 0 < 10.02.1~dfsg-1	10.02.1~dfsg-1
artifex	ghostscript	>= 0 < 10.02.1~dfsg-1	10.02.1~dfsg-1
debian	ghostscript	< ghostscript 10.0.0~dfsg-11+deb12u3 (bookworm)	ghostscript 10.0.0~dfsg-11+deb12u3 (bookworm)
jenkins	assembla_auth_plugin	—	—
jenkins	aws_codecommit_trigger_plugin	—	—
jenkins	bitbucket_push_and_pull_request_plugin	—	—
jenkins	config_file_provider_plugin	—	—
jenkins	disabled_permissions_can_be_granted_by_ssh2_easy_plugin	—	—
jenkins	disabled_permissions_granted_by_assembla_auth_plugin	—	—
jenkins	frugal_testing_plugin	—	—
jenkins	google_login_plugin	—	—
jenkins	ivy_plugin	—	—
jenkins	job_configuration_history_plugin	—	—
jenkins	non-constant_time_token_comparison_in_google_login_plugin	—	—
jenkins	pipeline_maven_integration_plugin	—	—
jenkins	qualys_container_scanning_connector_plugin	—	—
jenkins	ssh2_easy_plugin	—	—
jenkins	tap_plugin	—	—

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

osv7.5HIGH