Security Advisory

CVE-2015-3228

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-08-11 14:00:00

Last updated 2024-08-06 05:39:32

Assigner redhat

State PUBLISHED

Description

Integer overflow in the gs_heap_alloc_bytes function in base/gsmalloc.c in Ghostscript 9.15 and earlier allows remote attackers to cause a denial of service (crash) via a crafted Postscript (ps) file, as demonstrated by using the ps2pdf command, which triggers an out-of-bounds read or write.

← Browse all CVEs View on cve.org ↗