vulnerability

CentOS Linux: CVE-2018-17961: Important: ghostscript security and bug fix update (CESA-2018:3834)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Oct 15, 2018	Dec 20, 2018	May 25, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Oct 15, 2018

Added

Dec 20, 2018

Modified

May 25, 2023

Description

Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2018-17183.

Solutions

centos-upgrade-ghostscriptcentos-upgrade-ghostscript-cupscentos-upgrade-ghostscript-debuginfocentos-upgrade-ghostscript-develcentos-upgrade-ghostscript-doccentos-upgrade-ghostscript-gtk

References

DEBIAN-DSA-4336
NVD-CVE-2018-17961
REDHAT-RHSA-2018:3834
UBUNTU-USN-3803-1

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report