Bug 1136756 (CVE-2017-15652) - VUL-0: CVE-2017-15652: ghostscript,ghostscript-library: obtain sensitive information by opening a ps file
Summary: VUL-0: CVE-2017-15652: ghostscript,ghostscript-library: obtain sensitive info...
Status: RESOLVED FIXED
Alias: CVE-2017-15652
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/233616/
Whiteboard: CVSSv3:SUSE:CVE-2017-15652:5.5:(AV:L/...
Keywords:
Depends on:
Blocks:
 
Reported: 2019-05-29 13:42 UTC by Alexandros Toptsoglou
Modified: 2020-06-29 06:39 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments
POC (191.32 KB, image/png)
2019-05-29 13:47 UTC, Alexandros Toptsoglou
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Alexandros Toptsoglou 2019-05-29 13:42:31 UTC
CVE-2017-15652

Artifex Ghostscript 9.22 is affected by: Obtain Information. The impact is:
obtain sensitive information. The component is: affected source code file,
affected function, affected executable, affected libga (imagemagick used that).
The attack vector is: Someone must open a postscript file though ghostscript.
Because of imagemagick also use libga, so it was affected as well.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15652
http://www.cvedetails.com/cve/CVE-2017-15652/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15652
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=2fc463d0e
https://bugs.ghostscript.com/show_bug.cgi?id=698676
Comment 1 Alexandros Toptsoglou 2019-05-29 13:45:12 UTC
Version 9.23 fixes the issue. Thus SLE15 and and SLE12 are not affected. 

SLE11-SP1 tracked as affected.
Comment 2 Alexandros Toptsoglou 2019-05-29 13:46:27 UTC
Upstream fix at [1] while the POC is attached 

[1] http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=2fc463d0e
Comment 3 Alexandros Toptsoglou 2019-05-29 13:47:39 UTC
Created attachment 806372 [details]
POC
Comment 6 Marcus Meissner 2020-01-28 07:32:14 UTC
released