Integer overflow in the gs_heap_alloc_bytes function in base/gsmalloc.c in Ghostscript 9.15 and previous versions allows remote malicious users to cause a denial of service (crash) via a crafted Postscript (ps) file, as demonstrated by using the ps2pdf command, which triggers an out-of-bounds read or write.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
artifex afpl ghostscript |