vulnerability

Ubuntu: USN-3403-1 (CVE-2017-9611): Ghostscript vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	2017-07-26	2017-08-28	2025-04-25

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

2017-07-26

Added

2017-08-28

Modified

2025-04-25

Description

Kamil Frankowicz discovered that Ghostscript mishandles references.
A remote attacker could use this to cause a denial of service.
(CVE-2017-11714)

Kim Gwan Yeong discovered that Ghostscript could allow a heap-based buffer
over-read and application crash. A remote attacker could use a crafted
document to cause a denial of service. (CVE-2017-9611, CVE-2017-9726,
CVE-2017-9727, CVE-2017-9739)

Kim Gwan Yeong discovered an use-after-free vulnerability in Ghostscript.
A remote attacker could use a crafted file to cause a denial of service.
(CVE-2017-9612)

Kim Gwan Yeong discovered a lack of integer overflow check in Ghostscript.
A remote attacker could use crafted PostScript document to cause a denial
of service. (CVE-2017-9835)

Solution(s)

ubuntu-upgrade-ghostscriptubuntu-upgrade-ghostscript-xubuntu-upgrade-libgs9ubuntu-upgrade-libgs9-common

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today