Lucene search

K

GoogleOSV:CVE-2017-17858

HistoryJan 22, 2018 - 3:29 p.m.

CVE-2017-17858

2018-01-2215:29:00

Google

osv.dev

5

0.024 Low

EPSS

Percentile

89.9%

Heap-based buffer overflow in the ensure_solid_xref function in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 allows a remote attacker to potentially execute arbitrary code via a crafted PDF file, because xref subsection object numbers are unrestricted.

CPENameOperatorVersion
mupdfeq1.2
mupdfeq1.6-appstore
mupdfeq1.9a-r5
mupdfeq1.4
mupdfeq1.6-r1
mupdfeq0.4
mupdfeq1.1
mupdfeq1.9a-r8
mupdfeq1.11-r0
mupdfeq1.11-rc1

Rows per page:

1-10 of 681

References

git.ghostscript.com/?p=mupdf.git%3Ba=commit%3Bh=55c3f68d638ac1263a386e0aaa004bb6e8bde731

bugs.ghostscript.com/show_bug.cgi?id=698819

github.com/mzet-/Security-Advisories/blob/master/mzet-adv-2017-01.md

security.gentoo.org/glsa/201811-15

0.024 Low

EPSS

Percentile

89.9%

Related for OSV:CVE-2017-17858

alpinelinux1 prion1 archlinux5 debiancve1 cve1 veracode1 cvelist1 nvd1 ubuntucve1 nessus4 fedora2 openvas2 gentoo1