Vulnerable PDF can trigger remote shell with PDF export and ghostscript
Bug #1979575 reported by
Robert Lyon
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | ||
|---|---|---|---|---|---|---|
| Mahara | ||||||
| 21.04 |
Fix Released
|
Medium
|
Unassigned | |||
| 21.10 |
Fix Released
|
Medium
|
Unassigned | |||
| 22.04 |
Fix Released
|
Medium
|
Unassigned | |||
| 22.10 |
Fix Released
|
Medium
|
Unassigned | |||
Bug Description
The problem is Ubuntu 18.04 servers require the use of the flag -dSAFER with ghostscript, otherwise if you submit a vulnerable PDF you can trigger a remote shell.
In Mahara, ghostscript can be used to combine generated pdfs for pdf export.
As it's not the default way to combine pds and the fact that pdf export is not used by most systems I will mark this as a medium security issue.
CVE References
| summary: |
- Potential security with pdf export and ghostscript + Vulnerable PDF can trigger remote shell with PDF export and ghostscript |
Revision history for this message
| Robert Lyon (robertl-9) wrote | #1 |
| information type: | Private Security → Public Security |
| no longer affects: | mahara |
To post a comment you must log in.
https:/