Lucene search

GoogleOSV:CVE-2021-3407

HistoryFeb 23, 2021 - 11:15 p.m.

CVE-2021-3407

2021-02-2323:15:14

Google

osv.dev

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.8%

JSON

A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory corruption and other potential consequences.

CPENameOperatorVersion
mupdfeq0.7
mupdfeq1.7-rc1
mupdfeq1.2
mupdfeq1.5-ios-rc7
mupdfeq1.1
mupdfeq1.4-ios
mupdfeq1.5
mupdfeq1.5-ios-rc6
mupdfeq1.7
mupdfeq1.9

Name	Operator	Version
mupdf	eq	0.7
mupdf	eq	1.7-rc1
mupdf	eq	1.2
mupdf	eq	1.5-ios-rc7
mupdf	eq	1.1
mupdf	eq	1.4-ios
mupdf	eq	1.5
mupdf	eq	1.5-ios-rc6
mupdf	eq	1.7
mupdf	eq	1.9

Rows per page:

1-10 of 591

References

git.ghostscript.com/?p=mupdf.git%3Bh=cee7cefc610d42fd383b3c80c12cbc675443176a

lists.debian.org/debian-lts-announce/2021/03/msg00012.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LCADE3VSPWCGTE5BV4KL273R5VK3GDKM/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M44PNYCBL33OD7GC75XNE6CDS4VSGVWO/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLC6MPH7YS6JPU427XOFRLF3KKZQUZJN/

security.gentoo.org/glsa/202105-30