PublicDateAtUSN: 2016-12-31 Candidate: CVE-2016-9601 PublicDate: 2018-04-24 01:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9601 https://ubuntu.com/security/notices/USN-3297-1 Description: ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript. Ubuntu-Description: Notes: Bugs: https://bugs.ghostscript.com/show_bug.cgi?id=697457 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850497 Priority: medium Discovered-by: Bingchang Liu Assigned-to: mdeslaur CVSS: nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [5.5 MEDIUM] Patches_jbig2dec: upstream: http://git.ghostscript.com/?p=jbig2dec.git;a=commit;h=1369359f21a1c8a055cc745f920b17fbc3f30efd (bp) upstream: http://git.ghostscript.com/?p=jbig2dec.git;a=commit;h=e698d5c11d27212aa1098bc5b1673a3378563092 upstream: http://git.ghostscript.com/?p=jbig2dec.git;a=commit;h=9d2c4f3bdb0bd003deae788e7187c0f86e624544 upstream_jbig2dec: released (0.13-4) precise_jbig2dec: ignored (reached end-of-life) precise/esm_jbig2dec: ignored (end of ESM support, was needed) trusty_jbig2dec: released (0.11+20120125-1ubuntu1.1) trusty/esm_jbig2dec: released (0.11+20120125-1ubuntu1.1) vivid/stable-phone-overlay_jbig2dec: DNE vivid/ubuntu-core_jbig2dec: DNE xenial_jbig2dec: released (0.12+20150918-1ubuntu0.1) esm-infra/xenial_jbig2dec: released (0.12+20150918-1ubuntu0.1) yakkety_jbig2dec: released (0.13-2ubuntu0.1) zesty_jbig2dec: not-affected (0.13-4) artful_jbig2dec: not-affected (0.13-4.1) bionic_jbig2dec: not-affected (0.13-4.1) cosmic_jbig2dec: not-affected (0.13-4.1) disco_jbig2dec: not-affected (0.13-4.1) eoan_jbig2dec: not-affected (0.13-4.1) focal_jbig2dec: not-affected (0.13-4.1) groovy_jbig2dec: not-affected (0.13-4.1) hirsute_jbig2dec: not-affected (0.13-4.1) devel_jbig2dec: not-affected (0.13-4.1)