{ "schema_version": "1.4.0", "id": "GHSA-c7wv-85x6-hmhm", "modified": "2022-05-01T07:32:33Z", "published": "2022-05-01T07:32:33Z", "aliases": [ "CVE-2006-5864" ], "details": "Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the (1) DocumentMedia, (2) DocumentPaperSizes, and possibly (3) PageMedia and (4) PaperSize headers. NOTE: this issue can be exploited through other products that use gv such as evince.", "severity": [], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-5864" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30153" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30555" }, { "type": "WEB", "url": "https://issues.rpath.com/browse/RPL-850" }, { "type": "WEB", "url": "https://www.exploit-db.com/exploits/2858" }, { "type": "WEB", "url": "http://secunia.com/advisories/22787" }, { "type": "WEB", "url": "http://secunia.com/advisories/22932" }, { "type": "WEB", "url": "http://secunia.com/advisories/23006" }, { "type": "WEB", "url": "http://secunia.com/advisories/23018" }, { "type": "WEB", "url": "http://secunia.com/advisories/23111" }, { "type": "WEB", "url": "http://secunia.com/advisories/23118" }, { "type": "WEB", "url": "http://secunia.com/advisories/23183" }, { "type": "WEB", "url": "http://secunia.com/advisories/23266" }, { "type": "WEB", "url": "http://secunia.com/advisories/23306" }, { "type": "WEB", "url": "http://secunia.com/advisories/23335" }, { "type": "WEB", "url": "http://secunia.com/advisories/23353" }, { "type": "WEB", "url": "http://secunia.com/advisories/23409" }, { "type": "WEB", "url": "http://secunia.com/advisories/23579" }, { "type": "WEB", "url": "http://secunia.com/advisories/24649" }, { "type": "WEB", "url": "http://secunia.com/advisories/24787" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-200611-20.xml" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-200703-24.xml" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-200704-06.xml" }, { "type": "WEB", "url": "http://www.debian.org/security/2006/dsa-1214" }, { "type": "WEB", "url": "http://www.debian.org/security/2006/dsa-1243" }, { "type": "WEB", "url": "http://www.kb.cert.org/vuls/id/352825" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:214" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:229" }, { "type": "WEB", "url": "http://www.novell.com/linux/security/advisories/2006_26_sr.html" }, { "type": "WEB", "url": "http://www.novell.com/linux/security/advisories/2006_28_sr.html" }, { "type": "WEB", "url": "http://www.novell.com/linux/security/advisories/2006_29_sr.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/451057/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/451422/100/200/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/452868/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/20978" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-390-1" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-390-2" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-390-3" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2006/4424" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2006/4747" } ], "database_specific": { "cwe_ids": [ "CWE-119" ], "severity": "MODERATE", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2006-11-11T01:07:00Z" } }