a2ps

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	An Any to PostScript filter
Version	4.15.6-1 [extra]

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-1150	4.14-8	4.14-9	High	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2015-8107	AVG-1150	Medium	No	Arbitrary code execution	A format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code.
CVE-2014-0466	AVG-1150	High	No	Arbitrary command execution	The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or...

Issue

Group

Severity

Remote

Type

Description

CVE-2015-8107

AVG-1150

Medium

Arbitrary code execution

A format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code.

CVE-2014-0466

AVG-1150

High

Arbitrary command execution

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or...

Advisories

Date	Advisory	Group	Severity	Type
06 May 2020	ASA-202005-4	AVG-1150	High	multiple issues