製品・ソフトウェアに関する情報

JVN脆弱性詳細

Ghostscript の ICC Format ライブラリにおける整数オーバーフローの脆弱性

Title	Ghostscript の ICC Format ライブラリにおける整数オーバーフローの脆弱性
Summary	Ghostscript および Argyll Color Management System (CMS) の使用している International Color Consortium (ICC) フォーマットライブラリには、画像の組み込まれた PostScript または PDF ファイルの処理に不備があるため、整数オーバーフローの脆弱性が存在します。
Possible impacts	第三者による巧妙に細工された PostScript または PDF ファイルを処理することにより、サービス運用妨害 (DoS) 状態にされる、または任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	April 14, 2009, midnight
Registration Date	June 19, 2009, 2:48 p.m.
Last Update	Feb. 17, 2010, 11:44 a.m.

CVSS2.0 : 危険
Score	9.3
Vector	AV:N/AC:M/Au:N/C:C/I:C/A:C

Affected System

サン・マイクロシステムズ

OpenSolaris (sparc)

OpenSolaris (x86)

Sun Solaris 10 (sparc)

Sun Solaris 10 (x86)

Sun Solaris 9 (sparc)

Sun Solaris 9 (x86)

レッドハット

Red Hat Enterprise Linux 3 (as)

Red Hat Enterprise Linux 3 (es)

Red Hat Enterprise Linux 3 (ws)

Red Hat Enterprise Linux 4 (as)

Red Hat Enterprise Linux 4 (es)

Red Hat Enterprise Linux 4 (ws)

Red Hat Enterprise Linux 4.7 (as)

Red Hat Enterprise Linux 4.7 (es)

Red Hat Enterprise Linux 5 (server)

Red Hat Enterprise Linux Desktop 3.0

Red Hat Enterprise Linux Desktop 4.0

Red Hat Enterprise Linux Desktop 5.0 (client)

Red Hat Enterprise Linux EUS 5.3.z (server)

RHEL Desktop Workstation 5 (client)

サイバートラスト株式会社

Asianux Server 3 (x86)

Asianux Server 3 (x86-64)

Asianux Server 3.0

Asianux Server 3.0 (x86-64)

Asianux Server 4.0

Asianux Server 4.0 (x86-64)

Argyll CMS

Argyll CMS 1.0.3 およびそれ以前

Artifex Software

Ghostscript 8.64 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2009-0792	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0792
National Vulnerability Database (NVD)
2	CVE-2009-0792	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0792

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-189	https://jvndb.jvn.jp/ja/cwe/CWE-189.html

ベンダー情報

No	Name	URL
argyllcms.com
1	Top Page	http://www.argyllcms.com/
Asianux Technical Support Network
2	ghostscript-8.15.2-9.4.4.2AXS3	https://tsn.miraclelinux.com/tsn_local/index.php?m=errata&a=detail&eid=427
ghostscript.com
3	Top Page	http://www.ghostscript.com/
MIRACLE LINUX アップデート情報
4	1705	http://www.miraclelinux.com/support/index.php?q=node/99&errata_id=1705
5	1888	http://www.miraclelinux.com/support/index.php?q=node/99&errata_id=1888
Red Hat Security Advisory
6	RHSA-2009:0420	https://rhn.redhat.com/errata/RHSA-2009-0420.html
7	RHSA-2009:0421	https://rhn.redhat.com/errata/RHSA-2009-0421.html
Sun Alert Notification
8	262288	http://sunsolve.sun.com/search/document.do?assetkey=1-66-262288-1
レッドハットセキュリティーアップデート
9	RHSA-2009:0420	https://www.jp.redhat.com/support/errata/RHSA/RHSA-2009-0420J.html
10	RHSA-2009:0421	https://www.jp.redhat.com/support/errata/RHSA/RHSA-2009-0421J.html

その他

No	Name	URL
ISS X-Force Database
1	50381	http://xforce.iss.net/xforce/xfdb/50381
Secunia Advisory
2	SA34373	http://secunia.com/advisories/34373
3	SA34726	http://secunia.com/advisories/34726
4	SA34732	http://secunia.com/advisories/34732

Change Log

No	Changed Details	Date of change
0	[2009年06月19日] 掲載 [2009年08月04日] 影響を受けるシステム：サン・マイクロシステムズ (262288) の情報を追加ベンダ情報：サン・マイクロシステムズ (262288) を追加 [2010年02月17日] 影響を受けるシステム：ミラクル・リナックス (1888) の情報を追加ベンダ情報：ミラクル・リナックス (1888) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2009-0792

Summary	Multiple integer overflows in icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly execute arbitrary code by using a device file for a translation request that operates on a crafted image file and targets a certain "native color space," related to an ICC profile in a (1) PostScript or (2) PDF file with embedded images. NOTE: this issue exists because of an incomplete fix for CVE-2009-0583.
Publication Date	April 15, 2009, 1:26 a.m.
Registration Date	Jan. 29, 2021, 1:15 p.m.
Last Update	Nov. 7, 2023, 11:03 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ghostscript:ghostscript:7.07:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.62:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.57:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.54:::::::*
cpe:2.3:a:ghostscript:ghostscript:7.05:::::::*
cpe:2.3:a:ghostscript:ghostscript::::::::		8.64
cpe:2.3:a:ghostscript:ghostscript:5.50:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.15:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.56:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.15.2:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.0.1:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.61:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.63:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:argyllcms:argyllcms:0.2.2:::::::*
cpe:2.3:a:argyllcms:argyllcms::::::::		1.0.3
cpe:2.3:a:argyllcms:argyllcms:0.6.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.1.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.7.0:beta_8::::::
cpe:2.3:a:argyllcms:argyllcms:0.2.1:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.2.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.3.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:1.0.2:::::::*
cpe:2.3:a:argyllcms:argyllcms:1.0.0:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	https://bugzilla.redhat.com/show_bug.cgi?id=491853	CONFIRM
2	http://secunia.com/advisories/34711	SECUNIA	Vendor Advisory
3	http://secunia.com/advisories/34373	SECUNIA	Vendor Advisory
4	https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00211.html	FEDORA
5	https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00217.html	FEDORA
6	http://www.redhat.com/support/errata/RHSA-2009-0420.html	REDHAT
7	http://secunia.com/advisories/34726	SECUNIA
8	http://secunia.com/advisories/34732	SECUNIA
9	http://www.redhat.com/support/errata/RHSA-2009-0421.html	REDHAT
10	https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00460.html	FEDORA
11	http://secunia.com/advisories/34667	SECUNIA
12	http://wiki.rpath.com/Advisories:rPSA-2009-0060	CONFIRM
13	http://secunia.com/advisories/34729	SECUNIA
14	https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00461.html	FEDORA
15	http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html	SUSE
16	http://www.mandriva.com/security/advisories?name=MDVSA-2009:096	MANDRIVA
17	http://www.mandriva.com/security/advisories?name=MDVSA-2009:095	MANDRIVA
18	http://support.avaya.com/elmodocs2/security/ASA-2009-155.htm	CONFIRM
19	http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html	SUSE
20	http://secunia.com/advisories/35416	SECUNIA
21	http://sunsolve.sun.com/search/document.do?assetkey=1-26-262288-1	SUNALERT
22	http://www.vupen.com/english/advisories/2009/1708	VUPEN
23	http://secunia.com/advisories/35559	SECUNIA
24	http://secunia.com/advisories/35569	SECUNIA
25	http://security.gentoo.org/glsa/glsa-201412-17.xml	GENTOO
26	https://exchange.xforce.ibmcloud.com/vulnerabilities/50381	XF
27	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11207	OVAL
28	https://usn.ubuntu.com/757-1/	UBUNTU
29	http://www.securityfocus.com/archive/1/502757/100/0/threaded	BUGTRAQ

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-189	数値処理の問題	https://cwe.mitre.org/data/definitions/189.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ghostscript:ghostscript:7.07:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.62:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.57:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.54:::::::*
cpe:2.3:a:ghostscript:ghostscript:7.05:::::::*
cpe:2.3:a:ghostscript:ghostscript::::::::		8.64
cpe:2.3:a:ghostscript:ghostscript:5.50:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.15:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.56:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.15.2:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.0.1:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.61:::::::*
cpe:2.3:a:ghostscript:ghostscript:8.63:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:argyllcms:argyllcms:0.2.2:::::::*
cpe:2.3:a:argyllcms:argyllcms::::::::		1.0.3
cpe:2.3:a:argyllcms:argyllcms:0.6.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.1.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.7.0:beta_8::::::
cpe:2.3:a:argyllcms:argyllcms:0.2.1:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.2.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:0.3.0:::::::*
cpe:2.3:a:argyllcms:argyllcms:1.0.2:::::::*
cpe:2.3:a:argyllcms:argyllcms:1.0.0:::::::*