CVE-2016-8602 (retired)

Priority
Description
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows
remote attackers to cause a denial of service (application crash) or
possibly execute arbitrary code via a crafted Postscript document that
calls .sethalftone5 with an empty operand stack.
Package
Upstream:needed
Ubuntu 14.04 LTS (Trusty Tahr):released (9.10~dfsg-0ubuntu10.5)
Ubuntu 16.04 LTS (Xenial Xerus):released (9.18~dfsg~0-0ubuntu2.2)
Patches:
Upstream:http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=f5c7555c30393e64ec1f5ab0dfae5b55b3b3fc78
More Information

Updated: 2019-03-26 12:23:15 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)