SB2017041001 - Multiple vulnerabilities in Ghostscript
Published: April 10, 2017 Updated: May 25, 2017
Security Bulletin ID
SB2017041001
Severity
Medium
Patch available
YES
Number of vulnerabilities
4
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Integer overflow (CVE-ID: CVE-2016-9601)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.The vulnerability exists due to integer overflow when processing images within jbig2dec library. A remote attacker can pass a specially crafted image file to application, using the vulnerable library, and crash it.
2) NULL pointer dereference (CVE-ID: CVE-2016-10220)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.The vulnerability exists due to NULL pointer dereference error within the gs_makewordimagedevice() function in base/gsdevmem.c. A remote attacker can create a specially crafted PDF file, pass it to the affected application, trigger NULL pointer dereference and crash the application.
3) NULL pointer dereference (CVE-ID: CVE-2017-5951)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.The vulnerability exists due to a NULL pointer dereference error within the mem_get_bits_rectangle() function in base/gdevmem.c in Ghostscript. A remote attacker can create a specially crafted file, pass it to the affected application and crash it.
4) NULL pointer dereference (CVE-ID: CVE-2017-7207)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.The vulnerability exists due to a NULL pointer dereference error within the mem_get_bits_rectangle() function in base/gdevmem.c in Ghostscript. A remote attacker can create a specially crafted PostScript file, pass it to the affected application and crash it.
Remediation
Install update from vendor's website.