Lucene search
MitreCVELIST:CVE-2014-2013HistoryMar 03, 2014 - 4:00 p.m.
CVE-2014-2013
2014-03-0316:00:00
mitre
www.cve.org
Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and earlier allows remote attackers to execute arbitrary code via a large number of entries in the ContextColor value of the Fill attribute in a Path element.
References
bugs.ghostscript.com/show_bug.cgi?id=694957
git.ghostscript.com/?p=mupdf.git%3Ba=commitdiff%3Bh=60dabde18d7fe12b19da8b509bdfee9cc886aafc
lists.opensuse.org/opensuse-updates/2014-02/msg00088.html
seclists.org/fulldisclosure/2014/Jan/130
seclists.org/oss-sec/2014/q1/375
secunia.com/advisories/58904
www.debian.org/security/2014/dsa-2951
www.exploit-db.com/exploits/31090
www.hdwsec.fr/blog/mupdf.html
www.osvdb.org/102340
www.securityfocus.com/bid/65036
Related
securityvulns
securityvulns
[SECURITY] [DSA 2951-1] mupdf security update
2014-06-09 00:00:00
mupdf buffer overflow
2014-06-09 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2951-1)
2014-06-04 00:00:00
Gentoo Security Advisory GLSA 201412-43
2015-09-29 00:00:00
Debian Security Advisory DSA 2951-1 (mupdf - security update)
2014-06-05 00:00:00
cve
cve
CVE-2014-2013
2014-03-03 16:55:04
nvd
nvd
CVE-2014-2013
2014-03-03 16:55:04
debian
debian
[SECURITY] [DSA 2951-1] mupdf security update
2014-06-05 20:25:32
ubuntucve
ubuntucve
CVE-2014-2013
2014-03-03 00:00:00
nessus
nessus
Debian DSA-2951-1 : mupdf - security update
2014-06-06 00:00:00
GLSA-201412-43 : MuPDF: User-assisted execution of arbitrary code
2014-12-29 00:00:00
openSUSE Security Update : mupdf (openSUSE-SU-2014:0309-1)
2014-06-13 00:00:00
osv
osv
mupdf - security update
2014-06-05 00:00:00
debiancve
debiancve
CVE-2014-2013
2014-03-03 16:55:04
gentoo
gentoo
MuPDF: User-assisted execution of arbitrary code
2014-12-26 00:00:00
prion
prion
Stack overflow
2014-03-03 16:55:00