Top > CVE-2023-28879
  • The added line is THIS COLOR.
  • The deleted line is THIS COLOR.
  • Go to CVE-2023-28879.
[[CVE#ghostscript]]

- https://www.cvedetails.com/cve/CVE-2023-28879
>
In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. This affects BCPEncode, BCPDecode, TBCPEncode, and TBCPDecode. If the write buffer is filled to one byte less than full, and one then tries to write an escaped character, two bytes are written.

- https://nvd.nist.gov/vuln/detail/CVE-2023-28879

- 広く利用される「Ghostscript」に脆弱性 - 詳細や実証コードが公開
  - https://www.security-next.com/145689/
-- https://www.security-next.com/145689/

- Shell in the Ghost: Ghostscript CVE-2023-28879 writeup
--  https://offsec.almond.consulting/ghostscript-cve-2023-28879.html
Reload   Diff   Front page List of pages Search Recent changes Backup Referer   Help   RSS of recent changes