Critical Vulnerability in Ghostscript

Security researchers have discovered a critical vulnerability (CVE-2023-3664) in Ghostscript, an open-source interpreter for PostScript language and PDF files widely used in Linux. The vulnerability has a Common Vulnerability Scoring System (CVSSv3) score of 9.8 out of 10.

Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code through a specially crafted file due to improper handling of permission validation for pipe devices.

The vulnerability affects all versions of Ghostscript before 10.01.2. Applications on other operating systems, such as Windows, that use a port of affected Ghostscript versions also inherit this vulnerability.

Users and administrators of Linux systems are advised to upgrade to the latest version of Ghostscript, 10.01.2, using their distribution's package manager.

Users and administrators of open-source software that use ports of Ghostscript, such as LibreOffice, GIMP, Inkscape, Scribus, and ImageMagick, are advised to update to the latest versions when they are made available.

Sigma rules to detect possible exploitation of CVE-2023-3664 are available at https://github.com/KrollCYB/Kroll-CYB/tree/main/CVE-2023-36664.