CVE-2016-7978

Priority
Description
Use-after-free vulnerability in Ghostscript 9.20 might allow remote
attackers to execute arbitrary code via vectors related to a reference leak
in .setdevice.
Notes
sbeattiereproducer in ghostscript bug report
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [9.10~dfsg-0ubuntu10.5])
Ubuntu 16.04 LTS (Xenial Xerus):released (9.18~dfsg~0-0ubuntu2.2)
Patches:
Upstream:http://git.ghostscript.com/?p=user/chrisl/ghostpdl.git;h=d5ad1e0298e1c193087c824eb4f79628b182e28b
More Information

Updated: 2020-01-29 19:56:45 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)