CVE-2010-4054
EPSS 0.76%
Description
The gs_type2_interpret function in Ghostscript allows remote attackers to cause a denial of service (incorrect pointer dereference and application crash) via crafted font data in a compressed data stream, aka bug 691043.
How to fix CVE-2010-4054
To remediate CVE-2010-4054, upgrade the affected package to a fixed version below.
- Debian/ghostscript—upgrade to 8.71~dfsg-1 or later
Is CVE-2010-4054 being exploited?
Low — EPSS is 0.8%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 8.71~dfsg-1