CVE-2018-18284

Description

Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.

Affected packages (2)

• Alpine/ghostscriptfrom 0, < 9.25-r1
• Debian/ghostscriptfrom 0, < 9.25~dfsg-3

CVSS scores

References (2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2018-18284
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2018-18284