Published: 25 April 2022
Artifex Ghostscript through 9.26 mishandles .completefont. NOTE: this issue exists because of an incomplete fix for CVE-2019-3839.
CVSS 3 base score: 7.8
incomplete fix for CVE-2019-6116 and CVE-2019-3839 third commit is probably unnecessary and is not in focal+