CVE-2016-8602

Priority
Description
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows
remote attackers to cause a denial of service (application crash) or
possibly execute arbitrary code via a crafted Postscript document that
calls .sethalftone5 with an empty operand stack.
Notes
Package
Upstream:needed
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [9.10~dfsg-0ubuntu10.5])
Ubuntu 16.04 LTS (Xenial Xerus):released (9.18~dfsg~0-0ubuntu2.2)
Patches:
Upstream:http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=f5c7555c30393e64ec1f5ab0dfae5b55b3b3fc78
More Information

Updated: 2020-01-29 19:56:48 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)