CVE-2013-5653

Priority
Description
The getenv and filenameforall functions in Ghostscript 9.10 ignore the
"-dSAFER" argument, which allows remote attackers to read data via a
crafted postscript file.
Notes
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [9.10~dfsg-0ubuntu10.5])
Ubuntu 16.04 LTS (Xenial Xerus):released (9.18~dfsg~0-0ubuntu2.2)
More Information

Updated: 2020-01-29 19:48:02 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)