The gs_type2_interpret function which is a part of Ghostscript is prone to denial-of-service conditions.
Ghostscript contains a function called gs_type2_interpret which is not performing null value error checking. A specially crafted document can cause Ghostscript to deference a null pointer, causing a denial-of-service condition.
An attacker may use a specially crafted document to cause a denial-of-service condition.
According to the vendor's release notes this has been fixed in revision 10590.
Thanks to Jonathan Brossard at P1 Code Security for reporting this vulnerability.
|Date First Published:||2010-10-12|
|Date Last Updated:||2010-11-30 20:21 UTC|