Vulnerabilities in The ghostscript Project

3 results

CVE-2019-3835HIGHIt was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScriptEPSS 2.6%CVE-2019-3838HIGHIt was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PoEPSS 2.6%CVE-2019-3839HIGHIt was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially EPSS 1.8%