CVE-2016-10219

Summary

CVE	CVE-2016-10219
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2017-04-03 05:59:00 UTC
Updated	2017-11-04 01:29:00 UTC
Description	The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.

Risk And Classification

Problem Types: CWE-369

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Artifex	Ghostscript	9.20	All	All	All
Application	Artifex	Ghostscript	9.20	All	All	All

References

Reference	Source	Link	Tags
GPL Ghostscript: Multiple vulnerabilities (GLSA 201708-06) — Gentoo security	GENTOO	security.gentoo.org
git.ghostscript.com Git - ghostpdl.git/commit	CONFIRM	www.ghostscript.com	Vendor Advisory
Bug 697453 – Divide by zero in intersect()	CONFIRM	bugs.ghostscript.com	Exploit, Issue Tracking, Patch
Debian -- Security Information -- DSA-3838-1 ghostscript	DEBIAN	www.debian.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

671112 EulerOS Security Update for ghostscript (EulerOS-SA-2019-2370)
710373 Gentoo Linux GPL Ghostscript Multiple Vulnerabilities (GLSA 201708-06)