diff options
| author | Tijl Coosemans <tijl@FreeBSD.org> | 2019-12-09 20:54:17 +0000 |
|---|---|---|
| committer | Tijl Coosemans <tijl@FreeBSD.org> | 2019-12-09 20:54:17 +0000 |
| commit | 090f30cce87afcd148848adf7f11579e2ba21e39 (patch) | |
| tree | 9d5dff9f665b377a5a1e9af96291f1aecad56d71 | |
| parent | 5892f681ff5641a3f66c2d9d653b67eb5a16c074 (diff) | |
| download | ports-090f30cce87afcd148848adf7f11579e2ba21e39.tar.gz ports-090f30cce87afcd148848adf7f11579e2ba21e39.zip | |
Document Ghostscript vulnerabilities.
Security: CVE-2019-14811, CVE-2019-14812, CVE-2019-14813, CVE-2019-14817
Notes
Notes:
svn path=/head/; revision=519632
| -rw-r--r-- | security/vuxml/vuln.xml | 58 |
1 files changed, 58 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 5cdae1500e90..06ab31a7bdef 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -58,6 +58,64 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="22ae307a-1ac4-11ea-b267-001cc0382b2f"> + <topic>Ghostscript -- Security bypass vulnerabilities</topic> + <affects> + <package> + <name>ghostscript9-agpl-base</name> + <name>ghostscript9-agpl-x11</name> + <range><lt>9.50</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Cedric Buissart (Red Hat) reports:</p> + <blockquote cite="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811"> + <p>A flaw was found in, ghostscript versions prior to 9.50, in the + .pdf_hook_DSC_Creator procedure where it did not properly secure + its privileged calls, enabling scripts to bypass `-dSAFER` + restrictions. A specially crafted PostScript file could disable + security protection and then have access to the file system, or + execute arbitrary commands.</p> + </blockquote> + <blockquote cite="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812"> + <p>A flaw was found in all ghostscript versions 9.x before 9.50, in + the .setuserparams2 procedure where it did not properly secure its + privileged calls, enabling scripts to bypass `-dSAFER` + restrictions. A specially crafted PostScript file could disable + security protection and then have access to the file system, or + execute arbitrary commands.</p> + </blockquote> + <blockquote cite="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813"> + <p>A flaw was found in ghostscript, versions 9.x before 9.50, in the + setsystemparams procedure where it did not properly secure its + privileged calls, enabling scripts to bypass `-dSAFER` + restrictions. A specially crafted PostScript file could disable + security protection and then have access to the file system, or + execute arbitrary commands.</p> + </blockquote> + <blockquote cite="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817"> + <p>A flaw was found in, ghostscript versions prior to 9.50, in the + .pdfexectoken and other procedures where it did not properly secure + its privileged calls, enabling scripts to bypass `-dSAFER` + restrictions. A specially crafted PostScript file could disable + security protection and then have access to the file system, or + execute arbitrary commands.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2019-14811</cvename> + <cvename>CVE-2019-14812</cvename> + <cvename>CVE-2019-14813</cvename> + <cvename>CVE-2019-14817</cvename> + </references> + <dates> + <discovery>2019-08-20</discovery> + <entry>2019-12-09</entry> + </dates> + </vuln> + <vuln vid="ca3fe5b3-185e-11ea-9673-4c72b94353b5"> <topic>phpmyadmin -- multiple vulnerabilities</topic> <affects> |