CVE-2018-18284

描述

Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.

受影響套件(2)

• Alpine/ghostscriptfrom 0, < 9.25-r1
• Debian/ghostscriptfrom 0, < 9.25~dfsg-3

CVSS 分數

參考連結(2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2018-18284
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2018-18284