Artifex Ghostscript vulnerabilities
168 known vulnerabilities affecting artifex/ghostscript.
Total CVEs
168
CISA KEV
1
actively exploited
Public exploits
7
Exploited in wild
3
Severity breakdown
CRITICAL23HIGH70MEDIUM73LOW2
Vulnerabilities
Page 8 of 9
CVE-2020-16306P4MEDIUMCVSS 5.5v9.502020-08-13
CVE-2020-16306 [MEDIUM] CWE-476 CVE-2020-16306: A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50
A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in v9.51.
nvdosv
CVE-2022-2085P4MEDIUMCVSS 5.5v9.55.0vAffects in Ghostscript v9.55.02022-06-16
CVE-2022-2085 [MEDIUM] CWE-476 CVE-2022-2085: A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to ren
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an init_device_procs defined for the device that uses it as a prototype that depends upon the number of bits per pixel. For bpp > 64, mem_x_device is used and does not h
nvdosv
CVE-2020-16299P4MEDIUMCVSS 5.5fixed in 9.522020-08-13
CVE-2020-16299 [MEDIUM] CWE-369 CVE-2020-16299: A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Soft
A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.
nvdosv
CVE-2020-16293P4MEDIUMCVSS 5.5fixed in 9.522020-08-13
CVE-2020-16293 [MEDIUM] CWE-476 CVE-2020-16293: A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_comm
A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common() in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.
nvdosv
CVE-2020-16307P4MEDIUMCVSS 5.5v9.502020-08-13
CVE-2020-16307 [MEDIUM] CWE-476 CVE-2020-16307: A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex So
A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in v9.51.
nvdosv
CVE-2020-16310P4MEDIUMCVSS 5.5v9.502020-08-13
CVE-2020-16310 [MEDIUM] CWE-369 CVE-2020-16310: A division by zero vulnerability in dot24_print_page() in devices/gdevdm24.c of Artifex Software Gho
A division by zero vulnerability in dot24_print_page() in devices/gdevdm24.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.
nvdosv
CVE-2018-16541P4MEDIUMCVSS 5.5fixed in 9.242018-09-05
CVE-2018-16541 [MEDIUM] CWE-416 CVE-2018-16541: In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use inco
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice replacement to crash the interpreter.
nvdosv
CVE-2020-14373P4MEDIUMCVSS 5.5v9.252020-09-03
CVE-2020-14373 [MEDIUM] CWE-416 CVE-2020-14373: A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attac
A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service.
nvdosv
CVE-2017-5951P4MEDIUMCVSS 5.5v9.202017-04-03
CVE-2017-5951 [MEDIUM] CWE-476 CVE-2017-5951: The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 all
The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
nvdosv
CVE-2021-45944P4MEDIUMCVSS 5.5≥ 9.50, ≤ 9.53.32022-01-01
CVE-2021-45944 [MEDIUM] CWE-416 CVE-2021-45944: Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sa
Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sampled_data_continue and interp).
nvdosv
CVE-2017-8908P4MEDIUMCVSS 5.5v9.212017-05-12
CVE-2017-8908 [MEDIUM] CWE-125 CVE-2017-8908: The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause
The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PostScript document.
nvdosv
CVE-2023-4042P4MEDIUMCVSS 5.5fixed in 9.512023-08-23
CVE-2023-4042 [MEDIUM] CVE-2023-4042: A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-
A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.
nvd
CVE-2016-10219P4MEDIUMCVSS 5.5v9.202017-04-03
CVE-2016-10219 [MEDIUM] CWE-369 CVE-2016-10219: The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote att
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
nvdosv
CVE-2016-10220P4MEDIUMCVSS 5.5v9.202017-04-03
CVE-2016-10220 [MEDIUM] CWE-476 CVE-2016-10220: The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 al
The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF Transparency module.
nvdosv
CVE-2023-38559P4MEDIUMCVSS 5.5fixed in 10.02.02023-08-01
CVE-2023-38559 [MEDIUM] CWE-125 CVE-2023-38559: A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. Thi
A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file for a DEVN device with gs.
nvdosv
CVE-2025-7462P4MEDIUMCVSS 5.5≥ 0, < 9.55.0~dfsg1-0ubuntu5.13≥ 0, < 10.02.1~dfsg1-0ubuntu7.82025-09-29
CVE-2025-7462 [MEDIUM] ghostscript vulnerabilities
ghostscript vulnerabilities
It was discovered that Ghostscript incorrectly handled opening a file to
write. An attacker could possibly use this issue to cause Ghostscript to
crash, resulting in a denial of service (CVE-2025-7462)
It was discovered that Ghostscript incorrectly handled writing certain
files. An attacker could possibly use this issue to cause Ghostscript to
crash, resulting in a denial of service (CVE-2025-59798, CVE-2025-59799)
osv
CVE-2024-46955P4MEDIUMCVSS 5.5fixed in 10.04.02024-11-10
CVE-2024-46955 [MEDIUM] CWE-125 CVE-2024-46955: An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. There is an out-of-bo
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. There is an out-of-bounds read when reading color in Indexed color space.
nvdosv
CVE-2010-4820P4HIGHCVSS 7.2≥ 0, < 8.71~dfsg2-6.12014-10-27
CVE-2010-4820 [HIGH] CVE-2010-4820: Untrusted search path vulnerability in Ghostscript 8
Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working directory, a different vulnerability than CVE-2010-2055.
osv
CVE-2016-10217P4MEDIUMCVSS 5.5v9.202017-04-03
CVE-2016-10217 [MEDIUM] CWE-416 CVE-2016-10217: The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote a
The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted file that is mishandled in the color management module.
nvdosv
CVE-2020-21710P4MEDIUMCVSS 5.5v9.502023-08-22
CVE-2020-21710 [MEDIUM] CWE-369 CVE-2020-21710: A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Software GhostScript 9.
A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote attackers to cause a denial of service via opening of crafted PDF file.
nvdosv