Off-by-one error in the Ins_MINDEX function in the TrueType bytecode interpreter in Ghostscript prior to 8.71 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed TrueType font in a document that trigger an integer overflow and a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
artifex gpl ghostscript 8.64 |
||
artifex afpl ghostscript 7.00 |
||
artifex afpl ghostscript 6.50 |
||
artifex afpl ghostscript 8.14 |
||
artifex afpl ghostscript 8.13 |
||
artifex gpl ghostscript 8.01 |
||
artifex ghostscript fonts 6.0 |
||
artifex gpl ghostscript 8.54 |
||
artifex afpl ghostscript 8.53 |
||
artifex afpl ghostscript 6.01 |
||
artifex afpl ghostscript 6.0 |
||
artifex afpl ghostscript 8.12 |
||
artifex afpl ghostscript 8.11 |
||
artifex afpl ghostscript 8.52 |
||
artifex afpl ghostscript 8.00 |
||
artifex gpl ghostscript 8.15 |
||
artifex gpl ghostscript 8.60 |
||
artifex gpl ghostscript 8.61 |
||
artifex gpl ghostscript 8.56 |
||
artifex gpl ghostscript 8.62 |
||
artifex gpl ghostscript 8.63 |
||
artifex afpl ghostscript 8.54 |
||
artifex gpl ghostscript |
||
artifex afpl ghostscript 7.04 |
||
artifex afpl ghostscript 7.03 |
||
artifex afpl ghostscript 8.51 |
||
artifex afpl ghostscript 8.50 |
||
artifex gpl ghostscript 8.50 |
||
artifex ghostscript fonts 8.11 |
||
artifex gpl ghostscript 8.57 |
||
artifex gpl ghostscript 8.51 |