Bug 1444944 (CVE-2017-7948)
| Summary: | CVE-2017-7948 ghostscript: Integer overflow in the mark_curve function | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Adam Mariš <amaris> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | abhgupta, deekej, kseifried, tiwillia, twaugh, zdohnal |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2017-06-27 16:13:31 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1444945 | ||
| Bug Blocks: | 1444946 | ||
|
Description
Adam Mariš
2017-04-24 15:10:32 UTC
Created ghostscript tracking bugs for this issue: Affects: fedora-all [bug 1444945] I can't reproduce this issue. It looks like this bug was introduced when adding a new scanner via http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=18ef67078eb63103ed5e0de627296cb86f493d42 The ghostscript versions we ship do not include this new scanner, thus should be unaffected by it. Statement: This issue did not affect the versions of ghostscript as shipped with Red Hat Enterprise Linux 5, 6, and 7. This issue did not affect the versions of ghostscript as shipped with OpenShift Enterprise 2. |