CVE-2018-19409 (https://nvd.nist.gov/vuln/detail/CVE-2018-19409): An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used.
Raising severity, can be used in a combined attack involving less to get root.
This issue was resolved and addressed in GLSA 201811-12 at https://security.gentoo.org/glsa/201811-12 by GLSA coordinator Aaron Bauman (b-man).