CVE 2018-18284
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
Related bugs and status
CVE-2018-18284 (Candidate) is related to these bugs:
Bug #1800062: Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1800062 | Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops | ghostscript (Ubuntu) | High | Fix Released | ||
| 1800062 | Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops | GS-GPL | Medium | Fix Released | ||
| 1800062 | Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops | ghostscript (Ubuntu Cosmic) | High | Fix Released | ||
| 1800062 | Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops | ghostscript (Ubuntu Bionic) | Undecided | Fix Released | ||
| 1800062 | Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops | ghostscript (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1800062 | Ghostscript command line: /usr/bin/gs :Unrecoverable error: undefined in .putdeviceprops | ghostscript (Ubuntu Xenial) | Undecided | Fix Released | ||
Bug #1800328: HP Office Jet Cups reports Filter Failed. Works OK with 16.04
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1800328 | HP Office Jet Cups reports Filter Failed. Works OK with 16.04 | ghostscript (Ubuntu) | Undecided | Fix Released | ||
| 1800328 | HP Office Jet Cups reports Filter Failed. Works OK with 16.04 | ghostscript (Ubuntu Bionic) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
