CVE-2020-14373
N/A
N/A
Summary
A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ghostscript | 9.25 | affected |
Weaknesses
- CWE-416: Use After Free CWE-416
ADP Enrichment
CVE Program Container
Additional References
- https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=ece5cbbd9979cd35737b00e68267762d72feb2ea%3Bhp=1ef5f08f2c2e27efa978f0010669ff22355c385f
- https://bugs.ghostscript.com/show_bug.cgi?id=702851
- https://bugzilla.redhat.com/show_bug.cgi?id=1873239
References
- https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=ece5cbbd9979cd35737b00e68267762d72feb2ea%3Bhp=1ef5f08f2c2e27efa978f0010669ff22355c385f
- https://bugs.ghostscript.com/show_bug.cgi?id=702851
- https://bugzilla.redhat.com/show_bug.cgi?id=1873239
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.