Vítor Hugo Silva

Name of the Vulnerable Software and Affected Versions: Artifex Ghostscript versions through 9.22 Description: The issue is related to the `set text distance` function in the pdfwrite component, which does not prevent overflows in text-positioning calculation. This allows remote attackers to cause a denial of service, potentially leading to an application crash, via a crafted PDF document. The vulnerability may also have unspecified other impacts. Recommendations: For versions through 9.22, consider disabling the `set text distance` function as a temporary workaround until a patch is available. Restrict access to the pdfwrite component to minimize the risk of exploitation. Avoid using crafted PDF documents that could trigger the overflow in text-positioning calculation until the issue is resolved.