← volver
CVE-2009-0196

CVE-2009-0196

EPSS 7.4%
Heap-based buffer overflow in the big2_decode_symbol_dict function (jbig2_symbol_dict.c) in the JBIG2 decoding library (jbig2dec) in Ghostscript 8.64, and probably earlier versions, allows remote attackers to execute arbitrary code via a PDF file with a JBIG2 symbol dictionary segment with a large run length value.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.htmlhttp://osvdb.org/53492https://bugzilla.redhat.com/attachment.cgi?id=337747http://secunia.com/advisories/34292http://secunia.com/advisories/34667http://secunia.com/advisories/34729http://secunia.com/advisories/34732http://secunia.com/advisories/35416http://secunia.com/advisories/35559http://secunia.com/advisories/35569http://secunia.com/secunia_research/2009-21/