GCVE - cpe:2.3:a:artifex:ghostscript_ghostxps:9.21:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:artifex:ghostscript_ghostxps:9.21:*:*:*:*:*:*:*

part: a version: 9.21 update: *

Vendor	Artifex (`0075fabc-cec9-5063-a004-04a5c9db1a9b`)
Product	Ghostscript Ghostxps (`f320a877-f8bd-5e42-a6ac-9568881d0455`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-9740`	vulnerable	2026-06-03 14:37:42.111728	Details available The xps_decode_font_char_imp function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:18:01.491Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 http://www.securityfocus.com/bid/99983 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=961b10cdd71403072fb99401a45f3bef6ce53626 https://bugs.ghostscript.com/show_bug.cgi?id=698064	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9739`	vulnerable	2026-06-03 14:37:42.111305	Details available The Ins_JMPR function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:18:01.394Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 https://bugs.ghostscript.com/show_bug.cgi?id=698063 http://www.debian.org/security/2017/dsa-3986 http://www.securityfocus.com/bid/99987 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=c501a58f8d5650c8ba21d447c0d6f07eafcb0f15	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9727`	vulnerable	2026-06-03 14:37:42.083971	Details available The gx_ttfReader__Read function in base/gxttfb.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:18:01.123Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=937ccd17ac65935633b2ebc06cb7089b91e17e6b http://www.debian.org/security/2017/dsa-3986 http://www.securityfocus.com/bid/99999 http://bugs.ghostscript.com/show_bug.cgi?id=698056	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9726`	vulnerable	2026-06-03 14:37:42.083589	Details available The Ins_MDRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:18:01.419Z Open on db.gcve.eu Reference links http://bugs.ghostscript.com/show_bug.cgi?id=698055 https://security.gentoo.org/glsa/201811-12 http://www.debian.org/security/2017/dsa-3986 http://www.securityfocus.com/bid/99992 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=7755e67116e8973ee0e3b22d653df026a84fa01b	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9620`	vulnerable	2026-06-03 14:37:41.943144	Details available The xps_select_font_encoding function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document, related to the xps_encode_font_char_imp function. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:11:02.340Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 http://www.securityfocus.com/bid/99990 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=3ee55637480d5e319a5de0481b01c3346855cbc9 https://bugs.ghostscript.com/show_bug.cgi?id=698050	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9619`	vulnerable	2026-06-03 14:37:41.942807	Details available The xps_true_callback_glyph_name function in xps/xpsttf.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (Segmentation Violation and application crash) via a crafted file. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:11:02.344Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 http://www.securityfocus.com/bid/99988 https://bugs.ghostscript.com/show_bug.cgi?id=698042 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=c53183d4e7103e87368b7cfa15367a47d559e323	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9618`	vulnerable	2026-06-03 14:37:41.942470	Details available The xps_load_sfnt_name function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:11:02.364Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=3c2aebbedd37fab054e80f2e315de07d7e9b5bdb https://bugs.ghostscript.com/show_bug.cgi?id=698044 http://www.securityfocus.com/bid/99993	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9612`	vulnerable	2026-06-03 14:37:41.934499	Details available The Ins_IP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:11:02.329Z Open on db.gcve.eu Reference links https://security.gentoo.org/glsa/201811-12 https://bugs.ghostscript.com/show_bug.cgi?id=698026 http://www.debian.org/security/2017/dsa-3986 http://www.securityfocus.com/bid/99979 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=98f6da60b9d463c617e631fc254cf6d66f2e8e3c	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9610`	vulnerable	2026-06-03 14:37:41.933579	Details available The xps_load_sfnt_name function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document. Published: 2017-07-26T19:00:00.000Z Updated: 2024-08-05T17:11:02.326Z Open on db.gcve.eu Reference links https://bugs.ghostscript.com/show_bug.cgi?id=698025 https://security.gentoo.org/glsa/201811-12 http://www.securityfocus.com/bid/99976 http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=d2ab84732936b6e7e5a461dc94344902965e9a06	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.