assign CVE-2018-16509 to ghostscript 9.23 RCE

RabbitSudo · Sep 6, 2018 · af26c12 · af26c12
1 parent 5fa3496
commit af26c12
Show file tree

Hide file tree

Showing 6 changed files with 1 addition and 1 deletion.
diff --git a/ghostscript/9.23-rce/1.png → ghostscript/CVE-2018-16509/1.png b/ghostscript/9.23-rce/1.png → ghostscript/CVE-2018-16509/1.png
diff --git a/ghostscript/9.23-rce/2.png → ghostscript/CVE-2018-16509/2.png b/ghostscript/9.23-rce/2.png → ghostscript/CVE-2018-16509/2.png
diff --git a/ghostscript/9.23-rce/README.md → ghostscript/CVE-2018-16509/README.md b/ghostscript/9.23-rce/README.md → ghostscript/CVE-2018-16509/README.md
@@ -1,4 +1,4 @@
-# GhostScript 沙箱绕过（命令执行）漏洞
+# GhostScript 沙箱绕过（命令执行）漏洞（CVE-2018-16509）
 
 8 月 21 号，Tavis Ormandy 通过公开邮件列表，再次指出 GhostScript 的安全沙箱可以被绕过，通过构造恶意的图片内容，将可以造成命令执行、文件读取、文件删除等漏洞：
 

diff --git a/ghostscript/9.23-rce/docker-compose.yml → ...tscript/CVE-2018-16509/docker-compose.yml b/ghostscript/9.23-rce/docker-compose.yml → ...tscript/CVE-2018-16509/docker-compose.yml
diff --git a/ghostscript/9.23-rce/index.php → ghostscript/CVE-2018-16509/index.php b/ghostscript/9.23-rce/index.php → ghostscript/CVE-2018-16509/index.php
diff --git a/ghostscript/9.23-rce/poc.png → ghostscript/CVE-2018-16509/poc.png b/ghostscript/9.23-rce/poc.png → ghostscript/CVE-2018-16509/poc.png