{"id":"CVE-2023-38560","details":"An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format.","modified":"2026-03-13T07:40:23.657657Z","published":"2023-08-01T17:15:09.967Z","related":["CGA-6w97-wqp7-xgp2","MGASA-2023-0267"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/security/cve/CVE-2023-38560"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2224368"},{"type":"REPORT","url":"https://bugs.ghostscript.com/show_bug.cgi?id=706898"},{"type":"FIX","url":"https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=b7eb1d0174c"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-38560.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}