vulnerability

Amazon Linux AMI: CVE-2020-16305: Security patch for ghostscript (ALAS-2023-1854)

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Aug 13, 2020
Added
Oct 7, 2023
Modified
Oct 7, 2023

Description

A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

Solution

amazon-linux-upgrade-ghostscript
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.