Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 626418 (CVE-2017-11714) - <app-text/ghostscript-gpl-9.25: Out of bounds read in igc_reloc_struct_ptr() (CVE-2017-11714)
Summary: <app-text/ghostscript-gpl-9.25: Out of bounds read in igc_reloc_struct_ptr() ...
Status: RESOLVED FIXED
Alias: CVE-2017-11714
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard: B3 [glsa+ cve]
Keywords:
Depends on: CVE-2017-9610, CVE-2017-9611, CVE-2017-9612, CVE-2017-9618, CVE-2017-9619, CVE-2017-9620, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739, CVE-2017-9740, CVE-2017-9835
Blocks:
  Show dependency tree
 
Reported: 2017-07-28 09:37 UTC by Aleksandr Wagner (Kivak)
Modified: 2018-11-24 19:49 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Aleksandr Wagner (Kivak) 2017-07-28 09:37:01 UTC
From $URL:

psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the
scanner state structure, which allows remote attackers to cause a
denial of service (application crash) or possibly have unspecified
other impact via a crafted PostScript document, related to an
out-of-bounds read in the igc_reloc_struct_ptr function in psi/igc.c.

Upstream bug:

https://bugs.ghostscript.com/show_bug.cgi?id=698158

Upstream patch:

http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=671fd59eb
Comment 1 Ian Zimmerman 2017-09-30 16:25:41 UTC
See also [1].  This is included in [2] which also fixes several other ghostscript CVEs, none of which seem to exist as bugs in gentoo.

[1]
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869977

[2]
https://www.debian.org/security/2017/dsa-3986
Comment 2 Teika kazura 2018-04-15 03:40:25 UTC
This bug should depend on bug 634616, a bump request to ghostscript 9.22.
Comment 3 Michael Boyle 2018-05-22 02:11:31 UTC
Maintainers, the fix is in the 9.22. Please bump.

Michael Boyle
Gentoo Security Padawan
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2018-11-24 19:49:17 UTC
This issue was resolved and addressed in
 GLSA 201811-12 at https://security.gentoo.org/glsa/201811-12
by GLSA coordinator Aaron Bauman (b-man).