CVE-2024-46953

CVE-2024-46953

Name

CVE-2024-46953

Description

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and possible path traversal and code execution.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
	https://bugs.ghostscript.com/show_bug.cgi?id=707793
	https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html
	https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/
	https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=1f21a45df0fa3abec4cff12951022b192dda3c00
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2024/11/msg00023.html

Type

URI

https://bugs.ghostscript.com/show_bug.cgi?id=707793

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=1f21a45df0fa3abec4cff12951022b192dda3c00

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2024/11/msg00023.html

Match rules

CPE URI	Source package	Min version	Max version
	n/a	== n/a	== n/a
`cpe:2.3:a:artifex:ghostscript:10.04.0:::::::*`	ghostscript	== 10.04.0	== 10.04.0
`cpe:2.3:a:artifex:ghostscript::::::::`	ghostscript	>= None	< 10.04.0

CPE URI

Source package

Min version

Max version

n/a

== n/a

cpe:2.3:a:artifex:ghostscript:10.04.0:*:*:*:*:*:*:*

ghostscript

== 10.04.0

cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*

ghostscript

>= None

< 10.04.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
ghostscript	edge-main	10.04.0-r0	Cameron Banta <cbanta@gmail.com>	fixed
ghostscript	3.21-main	10.04.0-r0	Cameron Banta <cbanta@gmail.com>	fixed
ghostscript	3.20-main	10.04.0-r0	Cameron Banta <cbanta@gmail.com>	fixed
ghostscript	3.19-main	10.04.0-r0	Cameron Banta <cbanta@gmail.com>	fixed
ghostscript	3.18-main	10.04.0-r0	Cameron Banta <cbanta@gmail.com>	fixed

Source package

Branch

Version

Maintainer

Status

ghostscript

edge-main

10.04.0-r0

Cameron Banta <cbanta@gmail.com>

fixed

ghostscript

3.21-main