Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArchLinuxASA-201805-5
HistoryMay 10, 2018 - 12:00 a.m.

[ASA-201805-5] mupdf-gl: multiple issues

2018-05-1000:00:00
security.archlinux.org
13

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.5%

JSON

Arch Linux Security Advisory ASA-201805-5

Severity: High
Date : 2018-05-10
CVE-ID : CVE-2018-5686 CVE-2018-6187 CVE-2018-6192 CVE-2018-6544
CVE-2018-1000051
Package : mupdf-gl
Type : multiple issues
Remote : Yes
Link : https://security.archlinux.org/AVG-687

Summary

The package mupdf-gl before version 1.13.0-1 is vulnerable to multiple
issues including arbitrary code execution and denial of service.

Resolution

Upgrade to 1.13.0-1.

pacman -Syu “mupdf-gl>=1.13.0-1”

The problems have been fixed upstream in version 1.13.0.

Workaround

None.

Description

  • CVE-2018-5686 (denial of service)

In MuPDF 1.12.0, there is an infinite loop vulnerability and
application hang in the pdf_parse_array function (pdf/pdf-parse.c)
because EOF is not considered. Remote attackers could leverage this
vulnerability to cause a denial of service via a crafted pdf file.

  • CVE-2018-6187 (denial of service)

In Artifex MuPDF 1.12.0, there is a heap-based buffer overflow
vulnerability in the do_pdf_save_document function in the pdf/pdf-
write.c file. Remote attackers could leverage the vulnerability to
cause a denial of service via a crafted pdf file.

  • CVE-2018-6192 (denial of service)

In Artifex MuPDF 1.12.0, the pdf_read_new_xref function in pdf/pdf-
xref.c allows remote attackers to cause a denial of service
(segmentation violation and application crash) via a crafted pdf file.

  • CVE-2018-6544 (denial of service)

pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could
reference the object stream recursively and therefore run out of error
stack, which allows remote attackers to cause a denial of service via a
crafted PDF document.

  • CVE-2018-1000051 (arbitrary code execution)

Artifex Mupdf version 1.12.0 contains a Use After Free vulnerability in
fz_keep_key_storable that can result in DOS / Possible code execution.
This attack appear to be exploitable via Victim opens a specially
crafted PDF.

Impact

A remote attacker is able to crash the application or execute arbitrary
code via a specially crafted PDF file.

References

https://bugs.archlinux.org/task/57486
https://bugs.ghostscript.com/show_bug.cgi?id=698860
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=b70eb93f6936c03d8af52040bbca4d4a7db39079
https://bugs.ghostscript.com/show_bug.cgi?id=698908
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=3e30fbb7bf5efd88df431e366492356e7eb969ec
https://bugs.ghostscript.com/show_bug.cgi?id=698916
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=5e411a99604ff6be5db9e273ee84737204113299
https://git.ghostscript.com/?p=mupdf.git;h=fa9cd085533f68367c299e058ab3fbb7ad8a2dc6
https://bugs.ghostscript.com/show_bug.cgi?id=698965
https://bugs.ghostscript.com/show_bug.cgi?id=698830
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=b03def134988da8c800adac1a38a41a1f09a1d89
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=26527eef77b3e51c2258c8e40845bfbc015e405d
https://bugs.ghostscript.com/show_bug.cgi?id=698825
https://bugs.ghostscript.com/show_bug.cgi?id=698873
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=321ba1de287016b0036bf4a56ce774ad11763384
https://security.archlinux.org/CVE-2018-5686
https://security.archlinux.org/CVE-2018-6187
https://security.archlinux.org/CVE-2018-6192
https://security.archlinux.org/CVE-2018-6544
https://security.archlinux.org/CVE-2018-1000051

OSVersionArchitecturePackageVersionFilename
ArchLinuxanyanymupdf-gl< 1.13.0-1UNKNOWN

References

Related

archlinux 5
fedora 3
nessus 12
openvas 7
debian 4
osv 8
gentoo 1
ubuntucve 5
alpinelinux 5
prion 5
suse 1
veracode 4
cve 5
debiancve 5
archlinux
archlinux
[ASA-201805-12] zathura-pdf-mupdf: multiple issues
2018-05-16 00:00:00
[ASA-201805-7] mupdf-tools: multiple issues
2018-05-10 00:00:00
[ASA-201805-4] mupdf: multiple issues
2018-05-09 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: mupdf-1.12.0-5.fc27
2018-02-22 14:55:02
[SECURITY] Fedora 26 Update: mupdf-1.12.0-2.fc26
2018-02-06 10:53:51
[SECURITY] Fedora 27 Update: mupdf-1.12.0-2.fc27
2018-02-06 15:38:14
nessus
nessus
Fedora 27 : mupdf (2018-da6f76b446)
2018-02-23 00:00:00
openSUSE Security Update : mupdf (openSUSE-2018-149)
2018-02-09 00:00:00
Debian DSA-4152-1 : mupdf - security update
2018-03-28 00:00:00
openvas
openvas
Fedora Update for mupdf FEDORA-2018-da6f76b446
2018-02-22 00:00:00
Debian: Security Advisory (DSA-4152-1)
2018-03-26 00:00:00
Debian: Security Advisory (DSA-4334-1)
2018-11-03 00:00:00
debian
debian
[SECURITY] [DSA 4152-1] mupdf security update
2018-03-27 17:49:56
[SECURITY] [DSA 4152-1] mupdf security update
2018-03-27 17:50:22
[SECURITY] [DSA 4334-1] mupdf security update
2018-11-04 21:39:43
osv
osv
mupdf - security update
2018-03-27 00:00:00
mupdf - security update
2018-11-04 00:00:00
mupdf - security update
2019-06-28 00:00:00
gentoo
gentoo
MuPDF: Multiple vulnerabilities
2018-11-26 00:00:00
ubuntucve
ubuntucve
CVE-2018-1000051
2018-02-09 00:00:00
CVE-2018-6192
2018-01-24 00:00:00
CVE-2018-6187
2018-01-24 00:00:00
alpinelinux
alpinelinux
CVE-2018-1000051
2018-02-09 23:29:00
CVE-2018-6187
2018-01-24 10:29:00
CVE-2018-5686
2018-01-14 02:29:00
prion
prion
Design/Logic Flaw
2018-02-09 23:29:00
Design/Logic Flaw
2018-01-24 21:29:00
Code injection
2018-01-14 02:29:00
suse
suse
Security update for mupdf (moderate)
2018-06-09 15:14:09
veracode
veracode
Denial Of Service (DoS)
2018-02-12 08:58:28
Denial Of Service (DoS)
2018-01-26 01:28:10
Denial Of Service (DoS)
2018-01-15 01:32:57
cve
cve
CVE-2018-1000051
2018-02-09 23:29:00
CVE-2018-6187
2018-01-24 10:29:00
CVE-2018-6192
2018-01-24 21:29:00
debiancve
debiancve
CVE-2018-1000051
2018-02-09 23:29:00
CVE-2018-5686
2018-01-14 02:29:00
CVE-2018-6192
2018-01-24 21:29:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.5%

JSON
Related for ASA-201805-5
archlinux5fedora3nessus12openvas7debian4osv8gentoo1ubuntucve5alpinelinux5prion5suse1veracode4cve5debiancve5