Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2019-3838
Description:It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2019-3838
Bugtraq: 20190402 [slackware-security] ghostscript (SSA:2019-092-01) (Google Search)
Bugtraq: 20190417 [SECURITY] [DSA 4432-1] ghostscript security update (Google Search)
Debian Security Information: DSA-4432 (Google Search)
RedHat Security Advisories: RHSA-2019:0652
RedHat Security Advisories: RHSA-2019:0971
SuSE Security Announcement: openSUSE-SU-2019:1119 (Google Search)
SuSE Security Announcement: openSUSE-SU-2019:1121 (Google Search)

© 1998-2021 E-Soft Inc. All rights reserved.