一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：ghostscript

漏洞归属的版本：9.55.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):

2.openEuler-20.03-LTS-SP2(9.52):

3.openEuler-20.03-LTS-SP3(9.52):

4.openEuler-22.03-LTS(9.55.0):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):

2.openEuler-20.03-LTS-SP2(9.52):

3.openEuler-20.03-LTS-SP3(9.52):

4.openEuler-22.03-LTS(9.55.0):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：ghostscript

漏洞归属的版本：9.55.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):

2.openEuler-20.03-LTS-SP2(9.52):

3.openEuler-20.03-LTS-SP3(9.52):

4.openEuler-22.03-LTS(9.55.0):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):

2.openEuler-20.03-LTS-SP2(9.52):

3.openEuler-20.03-LTS-SP3(9.52):

4.openEuler-22.03-LTS(9.55.0):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：ghostscript

漏洞归属的版本：9.55.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):

2.openEuler-20.03-LTS-SP2(9.52):

3.openEuler-20.03-LTS-SP3(9.52):

4.openEuler-22.03-LTS(9.55.0):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):

2.openEuler-20.03-LTS-SP2(9.52):

3.openEuler-20.03-LTS-SP3(9.52):

4.openEuler-22.03-LTS(9.55.0):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：ghostscript

漏洞归属的版本：9.55.0

CVSS V2.0分值：

BaseScore：0.0 Low

Vector：CVSS：2.0/

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

openBrain开源漏洞感知系统

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

受影响版本排查(受影响/不受影响)：

修复是否涉及abi变化(是/否)：

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属的版本：9.55.0

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

在Ghostscript 9.55.0中发现了一个漏洞。该漏洞影响了gsmchunk.c文件的chunk_free_object函数。使用恶意文件进行操作会导致内存损坏。可以远程攻击，但需要和用户互动。该漏洞已经公开POC，建议使用补丁来修复这个问题。

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):否

2.openEuler-20.03-LTS-SP2(9.52):否

3.openEuler-20.03-LTS-SP3(9.52):否

4.openEuler-22.03-LTS(9.55.0):否

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

在Ghostscript 9.55.0中发现了一个漏洞。该漏洞影响了gsmchunk.c文件的chunk_free_object函数。使用恶意文件进行操作会导致内存损坏。可以远程攻击，但需要和用户互动。该漏洞已经公开POC，建议使用补丁来修复这个问题。

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in Ghostscript 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

在Ghostscript 9.55.0中发现了一个漏洞。该漏洞影响了gsmchunk.c文件的chunk_free_object函数。使用恶意文件进行操作会导致内存损坏。可以远程攻击，但需要和用户互动。该漏洞已经公开POC，建议使用补丁来修复这个问题。

openEuler评分：

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

7.8

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):否

2.openEuler-20.03-LTS-SP2(9.52):否

3.openEuler-20.03-LTS-SP3(9.52):否

4.openEuler-22.03-LTS(9.55.0):否

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

7.8

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):否

2.openEuler-20.03-LTS-SP2(9.52):否

3.openEuler-20.03-LTS-SP3(9.52):否

4.openEuler-22.03-LTS(9.55.0):否

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

7.8

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):否

2.openEuler-20.03-LTS-SP2(9.52):否

3.openEuler-20.03-LTS-SP3(9.52):否

4.openEuler-22.03-LTS(9.55.0):否

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

7.8

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):否

2.openEuler-20.03-LTS-SP2(9.52):否

3.openEuler-20.03-LTS-SP3(9.52):否

4.openEuler-22.03-LTS(9.55.0):否

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

一、漏洞信息

漏洞编号：[CVE-2022-1350](https://nvd.nist.gov/vuln/detail/CVE-2022-1350)

漏洞归属组件：[ghostscript](https://gitee.com/src-openeuler/ghostscript)

漏洞归属的版本：9.55.0

CVSS V3.0分值：

BaseScore：7.8 High

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

漏洞简述：

A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

漏洞公开时间：2022-04-14 15:15

漏洞创建时间：2022-04-14 21:56:54

漏洞详情参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2022-1350

<details>

<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |

| ------- | -------- | -------- |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| redhat | https://access.redhat.com/security/cve/CVE-2022-1350 | |

| suse_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| suse_bugzilla | https://vuldb.com/?id.197290 | |

| suse_bugzilla | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| suse_bugzilla | https://bugzilla.redhat.com/show_bug.cgi?id=2075523 | |

| suse_bugzilla | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1350 | |

| suse_bugzilla | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| suse_bugzilla | http://www.cvedetails.com/cve/CVE-2022-1350/ | |

| redhat_bugzilla | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| redhat_bugzilla | https://vuldb.com/?id.197290 | |

| ubuntu | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350 | |

| ubuntu | https://vuldb.com/?id.197290 | |

| ubuntu | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| ubuntu | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

| ubuntu | https://nvd.nist.gov/vuln/detail/CVE-2022-1350 | |

| ubuntu | https://launchpad.net/bugs/cve/CVE-2022-1350 | |

| ubuntu | https://security-tracker.debian.org/tracker/CVE-2022-1350 | |

| MISC | https://bugs.ghostscript.com/show_bug.cgi?id=705156 | |

| MISC | https://vuldb.com/?id.197290 | |

| MISC | https://bugs.ghostscript.com/attachment.cgi?id=22323 | |

</details>

漏洞分析指导链接：

https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md

漏洞数据来源:

其它

漏洞补丁信息：

<details>

<summary>详情(点击展开)</summary>

无

</details>

二、漏洞分析结构反馈

影响性分析说明：

openEuler评分：

7.8

Vector：CVSS：3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

受影响版本排查(受影响/不受影响)：

1.openEuler-20.03-LTS-SP1(9.52):受影响

2.openEuler-20.03-LTS-SP2(9.52):受影响

3.openEuler-20.03-LTS-SP3(9.52):受影响

4.openEuler-22.03-LTS(9.55.0):受影响

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):

修复是否涉及abi变化(是/否)：

1.openEuler-20.03-LTS-SP1(9.52):否

2.openEuler-20.03-LTS-SP2(9.52):否

3.openEuler-20.03-LTS-SP3(9.52):否

4.openEuler-22.03-LTS(9.55.0):否

5.openEuler-24.03-LTS-Next(9.56.1):

6.openEuler-22.03-LTS-SP4(9.55.0):

7.master(9.56.1):