{"id":"OSV-2024-1391","summary":"Heap-buffer-overflow in gsicc_create_getv2buffer","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=384972943\n\n```\nCrash type: Heap-buffer-overflow READ 12\nCrash state:\ngsicc_create_getv2buffer\npdf_iccbased_color_space\npdf_color_space_named\n```\n","modified":"2024-12-20T00:03:10.308031Z","published":"2024-12-20T00:03:10.307442Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=384972943"}],"affected":[{"package":{"name":"ghostscript","ecosystem":"OSS-Fuzz","purl":"pkg:generic/ghostscript"},"ranges":[{"type":"GIT","repo":"git://git.ghostscript.com/ghostpdl.git","events":[{"introduced":"441c9e3a4ca08fa7f7c00063af33196b0d88ebaf"},{"fixed":"da32171815f62653d90da4e9e0302f2e57ab3bd3"}]}],"versions":["ghostpdl-10.0.0","ghostpdl-10.0.0_release_tests_002","ghostpdl-10.0.0rc1","ghostpdl-10.0.0rc2","ghostpdl-10.01.0","ghostpdl-10.01.0rc1","ghostpdl-10.01.0rc2","ghostpdl-10.01.1","ghostpdl-10.01.1-gse-10174","ghostpdl-10.01.2","ghostpdl-10.02.0","ghostpdl-10.02.0-test-base-001","ghostpdl-10.02.0rc1","ghostpdl-10.02.0rc2","ghostpdl-10.02.1","ghostpdl-10.03.0","ghostpdl-10.03.0_test001","ghostpdl-10.03.0_test002","ghostpdl-10.03.0rc1","ghostpdl-10.03.0rc1_test","ghostpdl-10.03.0rc1_test002","ghostpdl-10.03.0rc1_test003","ghostpdl-10.03.1","ghostpdl-10.04.0","ghostpdl-10.04.0rc1","ghostpdl-10.04.0rc1_test001","ghostpdl-10.04.0rc2_test001","ghostpdl-10.05.0-test-base-001","rjw-test3","robin_test_ref"],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ghostscript/OSV-2024-1391.yaml"}}],"schema_version":"1.7.3"}