Launchpad.net

CVE 2018-18073

Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the saved execution stack in an error object.

Related bugs and status

CVE-2018-18073 (Candidate) is related to these bugs:

Bug #1800062: Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops

		In	Importance	Status
1800062	Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops	ghostscript (Ubuntu)	High	Fix Released
1800062	Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops	GS-GPL	Medium	Fix Released
1800062	Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops	ghostscript (Ubuntu Cosmic)	High	Fix Released
1800062	Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops	ghostscript (Ubuntu Bionic)	Undecided	Fix Released
1800062	Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops	ghostscript (Ubuntu Trusty)	Undecided	Fix Released
1800062	Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops	ghostscript (Ubuntu Xenial)	Undecided	Fix Released

Bug #1800328: HP Office Jet Cups reports Filter Failed. Works OK with 16.04

Summary				In	Importance	Status
	1800328	HP Office Jet Cups reports Filter Failed. Works OK with 16.04		ghostscript (Ubuntu)	Undecided	Fix Released
	1800328	HP Office Jet Cups reports Filter Failed. Works OK with 16.04		ghostscript (Ubuntu Bionic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2018-18073

Related bugs and status

Related bugs

References