CVE-2024-33871

Name
CVE-2024-33871
Description
An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp (and oprp) devices can have an arbitrary name for a dynamic library; this library is then loaded.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
https://bugs.ghostscript.com/show_bug.cgi?id=707754
https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=7145885041bb52cc23964f0aa2aec1b1c82b5908
https://www.openwall.com/lists/oss-security/2024/06/28/2

Match rules

CPE URI Source package Min version Max version
n/a == n/a == n/a
cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:* ghostscript >= None < 10.03.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
ghostscript edge-main 10.03.1-r0 Cameron Banta <cbanta@gmail.com> fixed
ghostscript edge-main 10.02.0-r0 Cameron Banta <cbanta@gmail.com> possibly vulnerable
ghostscript edge-main 9.54-r1 None possibly vulnerable
ghostscript edge-main 9.51-r0 None possibly vulnerable
ghostscript edge-main 9.50-r0 None possibly vulnerable
ghostscript edge-main 9.27-r4 None possibly vulnerable
ghostscript edge-main 9.27-r3 None possibly vulnerable
ghostscript edge-main 9.27-r2 None possibly vulnerable
ghostscript edge-main 9.26-r2 None possibly vulnerable
ghostscript edge-main 9.26-r1 None possibly vulnerable
ghostscript edge-main 9.26-r0 None possibly vulnerable
ghostscript edge-main 9.25-r1 None possibly vulnerable
ghostscript edge-main 9.25-r0 None possibly vulnerable
ghostscript edge-main 9.24-r0 None possibly vulnerable
ghostscript edge-main 9.23-r0 None possibly vulnerable
ghostscript edge-main 9.21-r3 None possibly vulnerable
ghostscript edge-main 9.21-r2 None possibly vulnerable
ghostscript 3.22-main 10.03.1-r0 None fixed
ghostscript 3.22-main 10.02.0-r0 None possibly vulnerable
ghostscript 3.22-main 9.54-r1 None possibly vulnerable
ghostscript 3.22-main 9.51-r0 None possibly vulnerable
ghostscript 3.22-main 9.50-r0 None possibly vulnerable
ghostscript 3.22-main 9.27-r4 None possibly vulnerable
ghostscript 3.22-main 9.27-r3 None possibly vulnerable
ghostscript 3.22-main 9.27-r2 None possibly vulnerable
ghostscript 3.22-main 9.26-r2 None possibly vulnerable
ghostscript 3.22-main 9.26-r1 None possibly vulnerable
ghostscript 3.22-main 9.26-r0 None possibly vulnerable
ghostscript 3.22-main 9.25-r1 None possibly vulnerable
ghostscript 3.22-main 9.25-r0 None possibly vulnerable
ghostscript 3.22-main 9.24-r0 None possibly vulnerable
ghostscript 3.22-main 9.23-r0 None possibly vulnerable
ghostscript 3.22-main 9.21-r3 None possibly vulnerable
ghostscript 3.22-main 9.21-r2 None possibly vulnerable
ghostscript 3.21-main 10.03.1-r0 None fixed
ghostscript 3.21-main 10.02.0-r0 None possibly vulnerable
ghostscript 3.21-main 9.54-r1 None possibly vulnerable
ghostscript 3.21-main 9.51-r0 None possibly vulnerable
ghostscript 3.21-main 9.50-r0 None possibly vulnerable
ghostscript 3.21-main 9.27-r4 None possibly vulnerable
ghostscript 3.21-main 9.27-r3 None possibly vulnerable
ghostscript 3.21-main 9.27-r2 None possibly vulnerable
ghostscript 3.21-main 9.26-r2 None possibly vulnerable
ghostscript 3.21-main 9.26-r1 None possibly vulnerable
ghostscript 3.21-main 9.26-r0 None possibly vulnerable
ghostscript 3.21-main 9.25-r1 None possibly vulnerable
ghostscript 3.21-main 9.25-r0 None possibly vulnerable
ghostscript 3.21-main 9.24-r0 None possibly vulnerable
ghostscript 3.21-main 9.23-r0 None possibly vulnerable
ghostscript 3.21-main 9.21-r3 None possibly vulnerable
ghostscript 3.21-main 9.21-r2 None possibly vulnerable
ghostscript 3.20-main 10.03.1-r0 Cameron Banta <cbanta@gmail.com> fixed
ghostscript 3.20-main 10.02.0-r0 None possibly vulnerable
ghostscript 3.20-main 9.54-r1 None possibly vulnerable
ghostscript 3.20-main 9.51-r0 None possibly vulnerable
ghostscript 3.20-main 9.50-r0 None possibly vulnerable
ghostscript 3.20-main 9.27-r4 None possibly vulnerable
ghostscript 3.20-main 9.27-r3 None possibly vulnerable
ghostscript 3.20-main 9.27-r2 None possibly vulnerable
ghostscript 3.20-main 9.26-r2 None possibly vulnerable
ghostscript 3.20-main 9.26-r1 None possibly vulnerable
ghostscript 3.20-main 9.26-r0 None possibly vulnerable
ghostscript 3.20-main 9.25-r1 None possibly vulnerable
ghostscript 3.20-main 9.25-r0 None possibly vulnerable
ghostscript 3.20-main 9.24-r0 None possibly vulnerable
ghostscript 3.20-main 9.23-r0 None possibly vulnerable
ghostscript 3.20-main 9.21-r3 None possibly vulnerable
ghostscript 3.20-main 9.21-r2 None possibly vulnerable
ghostscript 3.19-main 10.03.1-r0 Cameron Banta <cbanta@gmail.com> fixed
ghostscript 3.19-main 10.02.0-r0 None possibly vulnerable
ghostscript 3.19-main 9.54-r1 None possibly vulnerable
ghostscript 3.19-main 9.51-r0 None possibly vulnerable
ghostscript 3.19-main 9.50-r0 None possibly vulnerable
ghostscript 3.19-main 9.27-r4 None possibly vulnerable
ghostscript 3.19-main 9.27-r3 None possibly vulnerable
ghostscript 3.19-main 9.27-r2 None possibly vulnerable
ghostscript 3.19-main 9.26-r2 None possibly vulnerable
ghostscript 3.19-main 9.26-r1 None possibly vulnerable
ghostscript 3.19-main 9.26-r0 None possibly vulnerable
ghostscript 3.19-main 9.25-r1 None possibly vulnerable
ghostscript 3.19-main 9.25-r0 None possibly vulnerable
ghostscript 3.19-main 9.24-r0 None possibly vulnerable
ghostscript 3.19-main 9.23-r0 None possibly vulnerable
ghostscript 3.19-main 9.21-r3 None possibly vulnerable
ghostscript 3.19-main 9.21-r2 None possibly vulnerable
ghostscript 3.18-main 10.04.0-r0 Cameron Banta <cbanta@gmail.com> fixed
ghostscript 3.18-main 10.02.0-r0 Cameron Banta <cbanta@gmail.com> possibly vulnerable
ghostscript 3.17-main 10.01.2-r0 Cameron Banta <cbanta@gmail.com> possibly vulnerable