CVE-2018-16510

An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
artifexghostscript
𝑥
< 9.24
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
artifexgpl_ghostscript
𝑥
< 9.26
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ghostscript
bookworm
10.0.0~dfsg-11+deb12u4
fixed
bookworm (security)
10.0.0~dfsg-11+deb12u5
fixed
bullseye
9.53.3~dfsg-7+deb11u7
fixed
bullseye (security)
9.53.3~dfsg-7+deb11u8
fixed
jessie
not-affected
sid
10.04.0~dfsg-1
fixed
stretch
not-affected
trixie
10.04.0~dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ghostscript
bionic
Fixed 9.22~dfsg+1-0ubuntu1.2
released
trusty
dne
xenial
not-affected
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
ghostscript
suse enterprise desktop 15
9.25-3.6.1
fixed
suse enterprise desktop 15 SP1
9.25-3.6.1
fixed
suse enterprise desktop 15 SP2
9.25-3.6.1
fixed
suse enterprise desktop 15 SP3
9.25-3.6.1
fixed
suse enterprise desktop 15 SP4
9.25-3.6.1
fixed
suse enterprise desktop 15 SP5
9.25-3.6.1
fixed
suse enterprise desktop 15 SP6
9.25-3.6.1
fixed
suse enterprise desktop 15 SP7
9.25-3.6.1
fixed
suse enterprise sap 12 SP1
9.25-23.13.1
fixed
suse enterprise sap 12 SP3
9.25-23.13.1
fixed
suse enterprise sap 12 SP5
9.27-23.28.1
fixed
suse enterprise sap 15
9.25-3.6.1
fixed
suse enterprise sap 15 SP1
9.25-3.6.1
fixed
suse enterprise sap 15 SP2
9.25-3.6.1
fixed
suse enterprise sap 15 SP3
9.25-3.6.1
fixed
suse enterprise sap 15 SP4
9.25-3.6.1
fixed
suse enterprise sap 15 SP5
9.25-3.6.1
fixed
suse enterprise sap 15 SP6
9.25-3.6.1
fixed
suse enterprise sap 15 SP7
9.25-3.6.1
fixed
suse enterprise server 12
9.25-23.13.1
fixed
suse enterprise server 12 SP1
9.25-23.13.1
fixed
suse enterprise server 12 SP2
9.25-23.13.1
fixed
suse enterprise server 12 SP3
9.25-23.13.1
fixed
suse enterprise server 12 SP4
9.25-23.13.1
fixed
suse enterprise server 12 SP5
9.27-23.28.1
fixed
suse enterprise server 15
9.25-3.6.1
fixed
suse enterprise server 15 SP1
9.25-3.6.1
fixed
suse enterprise server 15 SP2
9.25-3.6.1
fixed
suse enterprise server 15 SP3
9.25-3.6.1
fixed
suse enterprise server 15 SP4
9.25-3.6.1
fixed
suse enterprise server 15 SP5
9.25-3.6.1
fixed
suse enterprise server 15 SP6
9.25-3.6.1
fixed
suse enterprise server 15 SP7
9.25-3.6.1
fixed
ghostscript-devel
suse enterprise desktop 15
9.25-3.6.1
fixed
suse enterprise desktop 15 SP1
9.25-3.6.1
fixed
suse enterprise desktop 15 SP2
9.25-3.6.1
fixed
suse enterprise desktop 15 SP3
9.25-3.6.1
fixed
suse enterprise desktop 15 SP4
9.25-3.6.1
fixed
suse enterprise desktop 15 SP5
9.25-3.6.1
fixed
suse enterprise desktop 15 SP6
9.25-3.6.1
fixed
suse enterprise desktop 15 SP7
9.25-3.6.1
fixed
suse enterprise sap 15
9.25-3.6.1
fixed
suse enterprise sap 15 SP1
9.25-3.6.1
fixed
suse enterprise sap 15 SP2
9.25-3.6.1
fixed
suse enterprise sap 15 SP3
9.25-3.6.1
fixed
suse enterprise sap 15 SP4
9.25-3.6.1
fixed
suse enterprise sap 15 SP5
9.25-3.6.1
fixed
suse enterprise sap 15 SP6
9.25-3.6.1
fixed
suse enterprise sap 15 SP7
9.25-3.6.1
fixed
suse enterprise server 15
9.25-3.6.1
fixed
suse enterprise server 15 SP1
9.25-3.6.1
fixed
suse enterprise server 15 SP2
9.25-3.6.1
fixed
suse enterprise server 15 SP3
9.25-3.6.1
fixed
suse enterprise server 15 SP4
9.25-3.6.1
fixed
suse enterprise server 15 SP5
9.25-3.6.1
fixed
suse enterprise server 15 SP6
9.25-3.6.1
fixed
suse enterprise server 15 SP7
9.25-3.6.1
fixed
ghostscript-x11
suse enterprise desktop 15
9.25-3.6.1
fixed
suse enterprise desktop 15 SP1
9.25-3.6.1
fixed
suse enterprise desktop 15 SP2
9.25-3.6.1
fixed
suse enterprise desktop 15 SP3
9.25-3.6.1
fixed
suse enterprise desktop 15 SP4
9.25-3.6.1
fixed
suse enterprise desktop 15 SP5
9.25-3.6.1
fixed
suse enterprise desktop 15 SP6
9.25-3.6.1
fixed
suse enterprise desktop 15 SP7
9.25-3.6.1
fixed
suse enterprise sap 12 SP1
9.25-23.13.1
fixed
suse enterprise sap 12 SP3
9.25-23.13.1
fixed
suse enterprise sap 12 SP5
9.27-23.28.1
fixed
suse enterprise sap 15
9.25-3.6.1
fixed
suse enterprise sap 15 SP1
9.25-3.6.1
fixed
suse enterprise sap 15 SP2
9.25-3.6.1
fixed
suse enterprise sap 15 SP3
9.25-3.6.1
fixed
suse enterprise sap 15 SP4
9.25-3.6.1
fixed
suse enterprise sap 15 SP5
9.25-3.6.1
fixed
suse enterprise sap 15 SP6
9.25-3.6.1
fixed
suse enterprise sap 15 SP7
9.25-3.6.1
fixed
suse enterprise server 12
9.25-23.13.1
fixed
suse enterprise server 12 SP1
9.25-23.13.1
fixed
suse enterprise server 12 SP2
9.25-23.13.1
fixed
suse enterprise server 12 SP3
9.25-23.13.1
fixed
suse enterprise server 12 SP4
9.25-23.13.1
fixed
suse enterprise server 12 SP5
9.27-23.28.1
fixed
suse enterprise server 15
9.25-3.6.1
fixed
suse enterprise server 15 SP1
9.25-3.6.1
fixed
suse enterprise server 15 SP2
9.25-3.6.1
fixed
suse enterprise server 15 SP3
9.25-3.6.1
fixed
suse enterprise server 15 SP4
9.25-3.6.1
fixed
suse enterprise server 15 SP5
9.25-3.6.1
fixed
suse enterprise server 15 SP6
9.25-3.6.1
fixed
suse enterprise server 15 SP7
9.25-3.6.1
fixed
libspectre-devel
suse enterprise desktop 15
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP1
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP2
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP3
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP4
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP5
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP6
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP7
0.2.8-3.2.1
fixed
suse enterprise sap 15
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP1
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP2
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP3
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP4
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP5
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP6
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP7
0.2.8-3.2.1
fixed
suse enterprise server 15
0.2.8-3.2.1
fixed
suse enterprise server 15 SP1
0.2.8-3.2.1
fixed
suse enterprise server 15 SP2
0.2.8-3.2.1
fixed
suse enterprise server 15 SP3
0.2.8-3.2.1
fixed
suse enterprise server 15 SP4
0.2.8-3.2.1
fixed
suse enterprise server 15 SP5
0.2.8-3.2.1
fixed
suse enterprise server 15 SP6
0.2.8-3.2.1
fixed
suse enterprise server 15 SP7
0.2.8-3.2.1
fixed
libspectre1
suse enterprise desktop 15
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP1
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP2
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP3
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP4
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP5
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP6
0.2.8-3.2.1
fixed
suse enterprise desktop 15 SP7
0.2.8-3.2.1
fixed
suse enterprise sap 15
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP1
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP2
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP3
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP4
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP5
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP6
0.2.8-3.2.1
fixed
suse enterprise sap 15 SP7
0.2.8-3.2.1
fixed
suse enterprise server 15
0.2.8-3.2.1
fixed
suse enterprise server 15 SP1
0.2.8-3.2.1
fixed
suse enterprise server 15 SP2
0.2.8-3.2.1
fixed
suse enterprise server 15 SP3
0.2.8-3.2.1
fixed
suse enterprise server 15 SP4
0.2.8-3.2.1
fixed
suse enterprise server 15 SP5
0.2.8-3.2.1
fixed
suse enterprise server 15 SP6
0.2.8-3.2.1
fixed
suse enterprise server 15 SP7
0.2.8-3.2.1
fixed
Common Weakness Enumeration
References
http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=ea735ba37dc0fd5f5622d031830b9a559dec1cc9
http://openwall.com/lists/oss-security/2018/08/27/4
https://bugs.ghostscript.com/show_bug.cgi?id=699671
https://security.gentoo.org/glsa/201811-12
https://usn.ubuntu.com/3768-1/
https://usn.ubuntu.com/3773-1/
http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=ea735ba37dc0fd5f5622d031830b9a559dec1cc9
http://openwall.com/lists/oss-security/2018/08/27/4
https://bugs.ghostscript.com/show_bug.cgi?id=699671
https://security.gentoo.org/glsa/201811-12
https://usn.ubuntu.com/3768-1/
https://usn.ubuntu.com/3773-1/