High severity7.8NVD Advisory· Published Jul 26, 2017· Updated Jun 17, 2026
CVE-2017-9610
CVE-2017-9610
Description
The xps_load_sfnt_name function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:artifex:ghostscript_ghostxps:9.21:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:artifex:ghostscript_ghostxps:9.21:*:*:*:*:*:*:*
- (no CPE)range: =9.21
Patches
Vulnerability mechanics
References
4- bugs.ghostscript.com/show_bug.cginvdExploitIssue TrackingThird Party Advisory
- www.securityfocus.com/bid/99976nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201811-12nvdThird Party Advisory
- git.ghostscript.comnvd
News mentions
0No linked articles in our index yet.