{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "9.52" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "9.0" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "10.0" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "16.04" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "18.04" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "20.04" } ] } ] } } ], "details": "A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common() in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.", "id": "CVE-2020-16293", "modified": "2026-03-15T21:48:46.833737531Z", "published": "2020-08-13T03:15:13.133Z", "references": [ { "type": "WEB", "url": "https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=7870f4951bcc6a153f317e3439e14d0e929fd231" }, { "type": "ADVISORY", "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00032.html" }, { "type": "ADVISORY", "url": "https://security.gentoo.org/glsa/202008-20" }, { "type": "ADVISORY", "url": "https://usn.ubuntu.com/4469-1/" }, { "type": "ADVISORY", "url": "https://www.debian.org/security/2020/dsa-4748" }, { "type": "REPORT", "url": "https://bugs.ghostscript.com/show_bug.cgi?id=701795" } ], "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }