Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CentOS Update for ghostscript CESA-2008:0155 centos4 x86_64

Severity

Medium

Family

CentOS Local Security Checks

CVSSv2 Base

6.8

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Solution Type

Vendor Patch

Created

14 years ago

Modified

5 years ago

Check for the Version of ghostscript

Insight

Ghostscript is a program for displaying PostScript files, or printing them to non-PostScript printers. Chris Evans from the Google Security Team reported a stack-based buffer overflow flaw in Ghostscript's zseticcspace() function. An attacker could create a malicious PostScript file that would cause Ghostscript to execute arbitrary code when opened. (CVE-2008-0411) These updated packages also fix a bug, which prevented the pxlmono printer driver from producing valid output on Red Hat Enterprise Linux 4. All users of ghostscript are advised to upgrade to these updated packages, which contain a backported patch to resolve these issues.

Affected Software

ghostscript on CentOS 4

Solution

Please Install the Updated Packages.

Common Vulnerabilities and Exposures (CVE)

CVE-2008-0411

References

http://lists.centos.org/pipermail/centos-announce/2008-February/014730

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CentOS Update for ghostscript CESA-2008:0155 centos4 x86_64

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Affected Software

Affected Software

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References