在Linux中广泛使用的PostScript语言和PDF文件开源解释器Ghostscript被发现存在严重远程代码执行漏洞。 该漏洞被标记为CVE-2023-3664，CVSS v3评级为9.8，影响10.01.2之前的所有Ghostscript版本，10.01.2是三周前发布的最新版本。 据Kroll公司的分析师G. Glass和D. Truman称，他们针对 ...

A vulnerability in Ghostscript, a widely used interpreter for Adobe PostScript and PDF page description languages, could allow attackers to remotely take control of vulnerable systems -- and there's ...

Ghostscript, an open-source interpreter for PostScript language and PDF files widely used in Linux, has been found vulnerable to a critical-severity remote code execution flaw. The flaw is tracked as ...

Tavis Ormandy, a Google Project Zero security researcher, has revealed details about a new major vulnerability discovered in Ghostscript, an interpreter for Adobe's PostScript and PDF page description ...

Topic ===== ghostscript can be tricked into executing arbitrary code Problem Description ===== An untrusted PostScript file can cause ghostscript to execute arbitrary commands due to insufficient ...

Google Project Zero security researcher Tavis Ormandy has exposed a new vulnerability in Ghostscript, a widely used suite of software based on an interpreter for Adobe Systems’ PostScript and Portable ...