CRITICAL🇵🇱 Wersja polska

CVE-2025-27831

CVSS 9.8v3.1pub. 2025-03-25upd. 2025-11-03

An issue was discovered in Artifex Ghostscript before 10.05.0. The DOCXWRITE TXTWRITE device has a text buffer overflow via long characters to devices/vector/doc_common.c.

🤖 AI Analysis
How it works

The vulnerability results from a text buffer overflow (CWE-120 — classic buffer overflow) in the file devices/vector/doc_common.c, which handles DOCXWRITE and TXTWRITE devices. Triggering the error requires passing a character or string of excessive length to the vulnerable device. Lack of proper validation of input data length causes memory to be overwritten beyond the intended buffer, which can lead to gaining control over program execution flow.

Impact

An attacker can gain full control over the confidentiality, integrity, and availability of the system — including executing arbitrary code (RCE) in the context of the Ghostscript process. In practice, compromise of a system processing documents is possible.

Mitigation & patch

Artifex Ghostscript should be updated to version 10.05.0 or later. Debian distribution users should apply updates published in the debian-lts-announce channel (April 2025). In environments where immediate updates are not possible, processing of untrusted documents by Ghostscript should be restricted and the process should be isolated in an environment with limited privileges (e.g., sandbox, container).

Who is affected

Artifex Ghostscript in all versions before 10.05.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Artifex Ghostscript

    APP
    Artifex
    < 10.05.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2025-27837CRITICAL9.8PL ✓ten sam produkt

Path Traversal w Artifex Ghostscript przez nieprawidłowe znaki UTF-8

CVE-2025-27832CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w urządzeniu NPDL Artifex Ghostscript (kompresja)

CVE-2025-27836CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w urządzeniu BJ10V w Artifex Ghostscript

CVE-2020-36773CRITICAL9.8PL ✓ten sam produkt

Artifex Ghostscript — out-of-bounds write i use-after-free w obsłudze txtwrite

CVE-2023-28879CRITICAL9.8ten sam produkt

In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data int...