Oval Definition:oval:org.opensuse.security:def:202328879
Revision Date:2023-06-22Version:1
Title:CVE-2023-28879
Description:

In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. This affects BCPEncode, BCPDecode, TBCPEncode, and TBCPDecode. If the write buffer is filled to one byte less than full, and one then tries to write an escaped character, two bytes are written.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2023-28879
SUSE CVE-2023-28879
SUSE-SU-2023:1797-1
SUSE-SU-2023:1799-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Linux Enterprise Workstation Extension 15 SP5
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP5 is installed
  • AND
  • OpenPrintingPPDs is not affected
  • OR OpenPrintingPPDs-ghostscript is not affected
  • OR OpenPrintingPPDs-hpijs is not affected
  • OR OpenPrintingPPDs-postscript is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND
  • ghostscript-9.52-150000.164.1 is installed
  • OR ghostscript-devel-9.52-150000.164.1 is installed
  • OR ghostscript-x11-9.52-150000.164.1 is installed
  • OR cups-filters is not affected
  • OR cups-filters-devel is not affected
  • OR ghostscript-fonts is not affected
  • OR ghostscript-fonts-other is not affected
  • OR ghostscript-fonts-std is not affected
  • OR ghostscript-fonts-std-converted is not affected
    • BACK