Back to bug 2224368
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Michael Kaplan | 2023-07-20 14:50:26 UTC | CC | security-response-team | |
| Michael Kaplan | 2023-07-20 14:53:05 UTC | Blocks | 2224370 | |
| Michael Kaplan | 2023-07-20 14:55:12 UTC | Priority | low | medium |
| Alias | TRIAGE-CVE-2023-38560 | |||
| Summary | EMBARGOED TRIAGE ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name | EMBARGOED TRIAGE-CVE-2023-38560 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name | ||
| Severity | low | medium | ||
| Michael Kaplan | 2023-07-20 14:58:47 UTC | Depends On | 2224375, 2224378, 2224377, 2224376 | |
| TEJ RATHI | 2023-07-25 06:59:18 UTC | Summary | EMBARGOED TRIAGE-CVE-2023-38560 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name | TRIAGE-CVE-2023-38560 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name |
| Group | security, qe_staff | |||
| TEJ RATHI | 2023-07-25 07:05:55 UTC | Depends On | 2225381 | |
| Michael J Gruber | 2023-07-25 10:17:05 UTC | CC | mjg | |
| Pedro Sampaio | 2023-08-01 12:53:39 UTC | Alias | TRIAGE-CVE-2023-38560 | CVE-2023-38560 |
| Pedro Sampaio | 2023-08-01 14:02:01 UTC | Summary | TRIAGE-CVE-2023-38560 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name | CVE-2023-38560 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name |
| Pedro Sampaio | 2023-08-01 14:34:40 UTC | Doc Text | A flaw was found in ghostscript. An Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name allows a local attacker to cause a denial of service via a crafted PCL file and tranforming it to PDF format | |
| Pedro Sampaio | 2023-08-01 14:35:49 UTC | Comment | 1 | updated |
| Paige Jung | 2023-08-01 16:40:58 UTC | Doc Text | A flaw was found in ghostscript. An Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name allows a local attacker to cause a denial of service via a crafted PCL file and tranforming it to PDF format | An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format. |
| Product Security DevOps Team | 2023-08-01 19:02:50 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2023-08-01 19:02:50 UTC | |||
| Salvatore Bonaccorso | 2023-08-04 04:07:58 UTC | CC | carnil | |
| Flags | needinfo?(mkaplan) | |||
| Product Security DevOps Team | 2023-08-04 09:00:16 UTC | Flags | needinfo?(mkaplan) | needinfo?(psampaio) |
| CC | psampaio | |||
| Pedro Sampaio | 2023-08-07 12:14:37 UTC | Comment | 1 | updated |
| Pedro Sampaio | 2023-08-07 12:15:07 UTC | Flags | needinfo?(psampaio) |
Back to bug 2224368