mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
162 lines
6.5 KiB
JSON
162 lines
6.5 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2019-6116",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"refsource": "REDHAT",
|
|
"name": "RHSA-2019:0229",
|
|
"url": "https://access.redhat.com/errata/RHSA-2019:0229"
|
|
},
|
|
{
|
|
"refsource": "BID",
|
|
"name": "106700",
|
|
"url": "http://www.securityfocus.com/bid/106700"
|
|
},
|
|
{
|
|
"refsource": "UBUNTU",
|
|
"name": "USN-3866-1",
|
|
"url": "https://usn.ubuntu.com/3866-1/"
|
|
},
|
|
{
|
|
"refsource": "EXPLOIT-DB",
|
|
"name": "46242",
|
|
"url": "https://www.exploit-db.com/exploits/46242/"
|
|
},
|
|
{
|
|
"refsource": "MLIST",
|
|
"name": "[debian-lts-announce] 20190211 [SECURITY] [DLA 1670-1] ghostscript security update",
|
|
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00016.html"
|
|
},
|
|
{
|
|
"url": "http://packetstormsecurity.com/files/151307/Ghostscript-Pseudo-Operator-Remote-Code-Execution.html",
|
|
"refsource": "MISC",
|
|
"name": "http://packetstormsecurity.com/files/151307/Ghostscript-Pseudo-Operator-Remote-Code-Execution.html"
|
|
},
|
|
{
|
|
"refsource": "DEBIAN",
|
|
"name": "DSA-4372",
|
|
"url": "https://www.debian.org/security/2019/dsa-4372"
|
|
},
|
|
{
|
|
"url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1729",
|
|
"refsource": "MISC",
|
|
"name": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1729"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00047.html",
|
|
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00047.html"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00048.html",
|
|
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00048.html"
|
|
},
|
|
{
|
|
"refsource": "MLIST",
|
|
"name": "[oss-security] 29190123 ghostscript: subroutines within pseudo-operators must themselves be pseudo-operators",
|
|
"url": "http://www.openwall.com/lists/oss-security/2019/01/23/5"
|
|
},
|
|
{
|
|
"refsource": "CONFIRM",
|
|
"name": "https://bugs.ghostscript.com/show_bug.cgi?id=700317",
|
|
"url": "https://bugs.ghostscript.com/show_bug.cgi?id=700317"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-7b9bb0e426",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MWVAVCDXBLPLJMVGNSKGGDTBEOHCJBKK/"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-15d57af79a",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7N6T5L3SSJX2AVUPHP7GCPATFWUPKZT2/"
|
|
},
|
|
{
|
|
"refsource": "MLIST",
|
|
"name": "[oss-security] 20190321 ghostscript: 2 -dSAFER bypass: CVE-2019-3835 & CVE-2019-3838",
|
|
"url": "http://www.openwall.com/lists/oss-security/2019/03/21/1"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-9f06aa44f6",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVWXVKG72IGEJYHLWE6H3CGALHGFSGGY/"
|
|
},
|
|
{
|
|
"refsource": "BUGTRAQ",
|
|
"name": "20190402 [slackware-security] ghostscript (SSA:2019-092-01)",
|
|
"url": "https://seclists.org/bugtraq/2019/Apr/4"
|
|
},
|
|
{
|
|
"refsource": "MISC",
|
|
"name": "http://packetstormsecurity.com/files/152367/Slackware-Security-Advisory-ghostscript-Updates.html",
|
|
"url": "http://packetstormsecurity.com/files/152367/Slackware-Security-Advisory-ghostscript-Updates.html"
|
|
},
|
|
{
|
|
"refsource": "REDHAT",
|
|
"name": "RHBA-2019:0327",
|
|
"url": "https://access.redhat.com/errata/RHBA-2019:0327"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-953fc0f16d",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
|
|
},
|
|
{
|
|
"refsource": "FEDORA",
|
|
"name": "FEDORA-2019-ebd6c4f15a",
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
|
|
}
|
|
]
|
|
}
|
|
} |