CVE-2023-28879

CVE-2023-28879

Name

CVE-2023-28879

Description

In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. This affects BCPEncode, BCPDecode, TBCPEncode, and TBCPDecode. If the write buffer is filled to one byte less than full, and one then tries to write an escaped character, two bytes are written.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://bugs.ghostscript.com/show_bug.cgi?id=706494
MISC	https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=37ed5022cecd584de868933b5b60da2e995b3179
MISC	https://ghostscript.readthedocs.io/en/latest/News.html
MLIST	https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html
DEBIAN	https://www.debian.org/security/2023/dsa-5383
FEDORA	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE/
MLIST	http://www.openwall.com/lists/oss-security/2023/04/12/4
FEDORA	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2/
FEDORA	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN/
GENTOO	https://security.gentoo.org/glsa/202309-03
	https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=37ed5022cecd584de868933b5b60da2e995b3179
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE/
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2/
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN/

Type

URI

MISC

https://bugs.ghostscript.com/show_bug.cgi?id=706494

MISC

https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=37ed5022cecd584de868933b5b60da2e995b3179

MISC

https://ghostscript.readthedocs.io/en/latest/News.html

MLIST

https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html

DEBIAN

https://www.debian.org/security/2023/dsa-5383

FEDORA

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE/

MLIST

http://www.openwall.com/lists/oss-security/2023/04/12/4

FEDORA

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2/

FEDORA

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN/

GENTOO

https://security.gentoo.org/glsa/202309-03

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=37ed5022cecd584de868933b5b60da2e995b3179

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN/

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:artifex:ghostscript::::::::`	ghostscript	>= None	< 10.01.0

CPE URI

Source package

Min version

Max version

cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*

ghostscript

>= None

< 10.01.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
ghostscript	edge-main	9.54-r1	None	possibly vulnerable
ghostscript	edge-main	9.51-r0	None	possibly vulnerable
ghostscript	edge-main	9.50-r0	None	possibly vulnerable
ghostscript	edge-main	9.27-r4	None	possibly vulnerable
ghostscript	edge-main	9.27-r3	None	possibly vulnerable
ghostscript	edge-main	9.27-r2	None	possibly vulnerable
ghostscript	edge-main	9.26-r2	None	possibly vulnerable
ghostscript	edge-main	9.26-r1	None	possibly vulnerable
ghostscript	edge-main	9.26-r0	None	possibly vulnerable
ghostscript	edge-main	9.25-r1	None	possibly vulnerable
ghostscript	edge-main	9.25-r0	None	possibly vulnerable
ghostscript	edge-main	9.24-r0	None	possibly vulnerable
ghostscript	edge-main	9.23-r0	None	possibly vulnerable
ghostscript	edge-main	9.21-r3	None	possibly vulnerable
ghostscript	edge-main	9.21-r2	None	possibly vulnerable
ghostscript	3.22-main	9.54-r1	None	possibly vulnerable
ghostscript	3.22-main	9.51-r0	None	possibly vulnerable
ghostscript	3.22-main	9.50-r0	None	possibly vulnerable
ghostscript	3.22-main	9.27-r4	None	possibly vulnerable
ghostscript	3.22-main	9.27-r3	None	possibly vulnerable
ghostscript	3.22-main	9.27-r2	None	possibly vulnerable
ghostscript	3.22-main	9.26-r2	None	possibly vulnerable
ghostscript	3.22-main	9.26-r1	None	possibly vulnerable
ghostscript	3.22-main	9.26-r0	None	possibly vulnerable
ghostscript	3.22-main	9.25-r1	None	possibly vulnerable
ghostscript	3.22-main	9.25-r0	None	possibly vulnerable
ghostscript	3.22-main	9.24-r0	None	possibly vulnerable
ghostscript	3.22-main	9.23-r0	None	possibly vulnerable
ghostscript	3.22-main	9.21-r3	None	possibly vulnerable
ghostscript	3.22-main	9.21-r2	None	possibly vulnerable
ghostscript	3.21-main	9.54-r1	None	possibly vulnerable
ghostscript	3.21-main	9.51-r0	None	possibly vulnerable
ghostscript	3.21-main	9.50-r0	None	possibly vulnerable
ghostscript	3.21-main	9.27-r4	None	possibly vulnerable
ghostscript	3.21-main	9.27-r3	None	possibly vulnerable
ghostscript	3.21-main	9.27-r2	None	possibly vulnerable
ghostscript	3.21-main	9.26-r2	None	possibly vulnerable
ghostscript	3.21-main	9.26-r1	None	possibly vulnerable
ghostscript	3.21-main	9.26-r0	None	possibly vulnerable
ghostscript	3.21-main	9.25-r1	None	possibly vulnerable
ghostscript	3.21-main	9.25-r0	None	possibly vulnerable
ghostscript	3.21-main	9.24-r0	None	possibly vulnerable
ghostscript	3.21-main	9.23-r0	None	possibly vulnerable
ghostscript	3.21-main	9.21-r3	None	possibly vulnerable
ghostscript	3.21-main	9.21-r2	None	possibly vulnerable
ghostscript	3.20-main	9.54-r1	None	possibly vulnerable
ghostscript	3.20-main	9.51-r0	None	possibly vulnerable
ghostscript	3.20-main	9.50-r0	None	possibly vulnerable
ghostscript	3.20-main	9.27-r4	None	possibly vulnerable
ghostscript	3.20-main	9.27-r3	None	possibly vulnerable
ghostscript	3.20-main	9.27-r2	None	possibly vulnerable
ghostscript	3.20-main	9.26-r2	None	possibly vulnerable
ghostscript	3.20-main	9.26-r1	None	possibly vulnerable
ghostscript	3.20-main	9.26-r0	None	possibly vulnerable
ghostscript	3.20-main	9.25-r1	None	possibly vulnerable
ghostscript	3.20-main	9.25-r0	None	possibly vulnerable
ghostscript	3.20-main	9.24-r0	None	possibly vulnerable
ghostscript	3.20-main	9.23-r0	None	possibly vulnerable
ghostscript	3.20-main	9.21-r3	None	possibly vulnerable
ghostscript	3.20-main	9.21-r2	None	possibly vulnerable
ghostscript	3.19-main	9.54-r1	None	possibly vulnerable
ghostscript	3.19-main	9.51-r0	None	possibly vulnerable
ghostscript	3.19-main	9.50-r0	None	possibly vulnerable
ghostscript	3.19-main	9.27-r4	None	possibly vulnerable
ghostscript	3.19-main	9.27-r3	None	possibly vulnerable
ghostscript	3.19-main	9.27-r2	None	possibly vulnerable
ghostscript	3.19-main	9.26-r2	None	possibly vulnerable
ghostscript	3.19-main	9.26-r1	None	possibly vulnerable
ghostscript	3.19-main	9.26-r0	None	possibly vulnerable
ghostscript	3.19-main	9.25-r1	None	possibly vulnerable
ghostscript	3.19-main	9.25-r0	None	possibly vulnerable
ghostscript	3.19-main	9.24-r0	None	possibly vulnerable
ghostscript	3.19-main	9.23-r0	None	possibly vulnerable
ghostscript	3.19-main	9.21-r3	None	possibly vulnerable
ghostscript	3.19-main	9.21-r2	None	possibly vulnerable
ghostscript	3.17-main	10.0.0-r1	Cameron Banta <cbanta@gmail.com>	fixed

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages