CVE-2024-46952

EUVD-2024-42155
An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream (related to W array values).
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
Affected Products (NVD)
VendorProductVersion
artifexghostscript
𝑥
< 10.04.0
debiandebian_linux
12.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ghostscript
bookworm
10.0.0~dfsg-11+deb12u7
fixed
bookworm (security)
10.0.0~dfsg-11+deb12u8
fixed
bullseye
9.53.3~dfsg-7+deb11u7
not-affected
bullseye (security)
9.53.3~dfsg-7+deb11u11
fixed
forky
10.06.0~dfsg-3
fixed
sid
10.06.0~dfsg-3
fixed
trixie
10.05.1~dfsg-1+deb13u1
fixed
trixie (security)
10.05.1~dfsg-1+deb13u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ghostscript
bionic
not-affected
focal
not-affected
jammy
Fixed 9.55.0~dfsg1-0ubuntu5.10
released
noble
Fixed 10.02.1~dfsg1-0ubuntu7.4
released
oracular
Fixed 10.03.1~dfsg1-0ubuntu2.1
released
xenial
not-affected
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
ghostscript
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
ghostscript-doc
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
ghostscript-tools-dvipdf
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
ghostscript-tools-fonts
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
ghostscript-tools-printing
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
ghostscript-x11
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
libgs
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
libgs-devel
RHEL 8
0:9.27-16.el8_10
fixed
RHEL 9
0:9.54.0-18.el9_6
fixed
Common Weakness Enumeration
References
https://bugs.ghostscript.com/show_bug.cgi?id=708001
https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=b1f0827c30f59a2dcbc8a39e42cace7a1de35f7f
https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html