VYPR

Ghostscript Ghostxps

by Artifex

CVEs (11)

  • CVE-2017-9740HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The xps_decode_font_char_imp function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9739HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.03

    The Ins_JMPR function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9727HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.03

    The gx_ttfReader__Read function in base/gxttfb.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9726HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.03

    The Ins_MDRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9620HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The xps_select_font_encoding function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document, related to the…

  • CVE-2017-9619HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The xps_true_callback_glyph_name function in xps/xpsttf.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (Segmentation Violation and application crash) via a crafted file.

  • CVE-2017-9618HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The xps_load_sfnt_name function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9612HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The Ins_IP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9611HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The Ins_MIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2017-9610HigJul 26, 2017
    risk 0.51cvss 7.8epss 0.02

    The xps_load_sfnt_name function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

  • CVE-2025-59801MedSep 22, 2025
    risk 0.28cvss 4.3epss 0.00

    In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.