CVE-2009-4897

Description

Buffer overflow in gs/psi/iscan.c in Ghostscript 8.64 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document containing a long name.

Affected products

• artifex / afpl_ghostscript6.0 – 6.0
• artifex / afpl_ghostscript6.01 – 6.01
• artifex / afpl_ghostscript6.50 – 6.50
• artifex / afpl_ghostscript7.00 – 7.00
• artifex / afpl_ghostscript7.03 – 7.03
• artifex / afpl_ghostscript7.04 – 7.04
• artifex / afpl_ghostscript8.00 – 8.00
• artifex / afpl_ghostscript8.11 – 8.11
• artifex / afpl_ghostscript8.12 – 8.12
• artifex / afpl_ghostscript8.13 – 8.13
• artifex / afpl_ghostscript8.14 – 8.14
• artifex / afpl_ghostscript8.50 – 8.50
• artifex / afpl_ghostscript8.51 – 8.51
• artifex / afpl_ghostscript8.52 – 8.52
• artifex / afpl_ghostscript8.53 – 8.53
• artifex / afpl_ghostscript8.54 – 8.54
• artifex / ghostscript_fonts8.11 – 8.11
• artifex / gpl_ghostscript8.64
• artifex / gpl_ghostscript8.01 – 8.01
• artifex / gpl_ghostscript8.15 – 8.15
• artifex / gpl_ghostscript8.50 – 8.50
• artifex / gpl_ghostscript8.51 – 8.51
• artifex / gpl_ghostscript8.54 – 8.54
• artifex / gpl_ghostscript8.56 – 8.56
• artifex / gpl_ghostscript8.57 – 8.57
• artifex / gpl_ghostscript8.60 – 8.60
• artifex / gpl_ghostscript8.61 – 8.61
• artifex / gpl_ghostscript8.62 – 8.62
• artifex / gpl_ghostscript8.63 – 8.63
• artifex / gpl_ghostscript8.70 – 8.70
• artifex / gpl_ghostscript8.71 – 8.71

References

• MISChttp://security.gentoo.org/glsa/glsa-201412-17.xml
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDVSA-2010:134
• MISChttp://www.osvdb.org/66277
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/60380
• VENDOR_ADVISORYhttp://www.ubuntu.com/usn/USN-961-1
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDVSA-2010:135
• VENDOR_ADVISORYhttp://secunia.com/advisories/40580
• MISChttp://www.securityfocus.com/bid/41593
• MISChttp://bugs.ghostscript.com/show_bug.cgi?id=690523
• MISChttps://bugzilla.redhat.com/show_bug.cgi?id=613792