Unrated severityNVD Advisory· Published Dec 3, 2018· Updated Aug 5, 2024
CVE-2018-16863
CVE-2018-16863
Description
It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509. An attacker could possibly exploit another variant of the flaw and bypass the -dSAFER protection to, for example, execute arbitrary shell commands via a specially crafted PostScript document. This only affects ghostscript 9.07 as shipped with Red Hat Enterprise Linux 7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 9.07 (as shipped with RHEL 7)+ 1 more
- (no CPE)range: = 9.07 (as shipped with RHEL 7)
- (no CPE)range: 9.07
Patches
Vulnerability mechanics
References
6- access.redhat.com/errata/RHSA-2018:3761mitrevendor-advisoryx_refsource_REDHAT
- git.ghostscript.commitrex_refsource_CONFIRM
- git.ghostscript.commitrex_refsource_CONFIRM
- git.ghostscript.commitrex_refsource_CONFIRM
- git.ghostscript.commitrex_refsource_CONFIRM
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.