CVE-2023-43115

Name
CVE-2023-43115
Description
In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be specified on a gs command line (the IJS device inherently must execute a command to start the IJS server).
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://bugs.ghostscript.com/show_bug.cgi?id=707051
MISC https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=e59216049cac290fb437a04c4f41ea46826cfba5
MISC https://ghostscript.com/
https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=e59216049cac290fb437a04c4f41ea46826cfba5
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IK3UXJ5HKMPAL5EQELJAWSRPA2AUOJJO/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PG5AQV7JOL5TAU76FWPJCMSKO5DREKV5/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:* ghostscript >= None <= 10.01.2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
ghostscript 3.17-main 10.01.2-r0 Cameron Banta <cbanta@gmail.com> possibly vulnerable
ghostscript 3.16-main 9.56.1-r2 Cameron Banta <cbanta@gmail.com> possibly vulnerable
ghostscript 3.15-main 9.55.0-r2 Cameron Banta <cbanta@gmail.com> possibly vulnerable
ghostscript 3.18-main 10.02.0-r0 Cameron Banta <cbanta@gmail.com> fixed