Artifex Ghostscript 9.53.0 Release Candidate 1
Approved changes feed: RSS · Atom
cpe:2.3:a:artifex:ghostscript:9.53.0:rc1:*:*:*:*:*:*
part: a version: 9.53.0 update: rc1
| Vendor | Artifex (0075fabc-cec9-5063-a004-04a5c9db1a9b) |
|---|---|
| Product | Ghostscript (2768aa7e-f93f-51c8-bf61-d81e3bb18978) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/ghostscript |
purl2cpe | 2026-06-01 10:15:00.320287 |
pkg:deb/ubuntu/ghostscript |
purl2cpe | 2026-06-01 10:15:00.320289 |
pkg:github/artifexsoftware/ghostpdl |
purl2cpe | 2026-06-01 10:15:00.320291 |
pkg:github/artifexsoftware/ghostpdl-downloads |
purl2cpe | 2026-06-01 10:15:00.320292 |
pkg:rpm/fedora/ghostscript |
purl2cpe | 2026-06-01 10:15:00.320294 |
pkg:rpm/opensuse/ghostscript |
purl2cpe | 2026-06-01 10:15:00.320296 |
pkg:sourceforge/ghostscript |
purl2cpe | 2026-06-01 10:15:00.320298 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-36773 |
vulnerable | 2026-06-03 14:42:39.953498 |
Details available
Artifex Ghostscript before 9.53.0 has an out-of-bounds write and use-after-free in devices/vector/gdevtxtw.c (for txtwrite) because a single character code in a PDF document can map to more than one Unicode code point (e.g., for a ligature).
Published: 2024-02-04T00:00:00.000Z
Updated: 2025-05-22T17:29:16.336Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.