{ "schema_version": "1.4.0", "id": "GHSA-mwgq-j58h-pv6j", "modified": "2022-05-24T17:24:33Z", "published": "2022-05-24T17:24:33Z", "aliases": [ "CVE-2020-15900" ], "details": "A memory corruption issue was found in Artifex Ghostscript 9.50 and 9.52. Use of a non-standard PostScript operator can allow overriding of file access controls. The 'rsearch' calculation for the 'post' size resulted in a size that was too large, and could underflow to max uint32_t. This was fixed in commit 5d499272b95a6b890a1397e11d20937de000d31b.", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15900" }, { "type": "WEB", "url": "https://github.com/ArtifexSoftware/ghostpdl/commit/5d499272b95a6b890a1397e11d20937de000d31b" }, { "type": "WEB", "url": "https://artifex.com/security-advisories/CVE-2020-15900" }, { "type": "WEB", "url": "https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5d499272b95a6b890a1397e11d20937de000d31b" }, { "type": "WEB", "url": "https://github.com/ArtifexSoftware/ghostpdl/commits/master/psi/zstring.c" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/202008-20" }, { "type": "WEB", "url": "https://usn.ubuntu.com/4445-1" }, { "type": "WEB", "url": "http://git.ghostscript.com/?p=ghostpdl.git;a=log" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00004.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00006.html" } ], "database_specific": { "cwe_ids": [ "CWE-119", "CWE-787" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2020-07-28T16:15:00Z" } }