MuPDF 'jstest_main.c' Stack Buffer Overflow Vulnerability

Artifex Software MuPDF is a free, lightweight PDF reader from Artifex Software, USA. A stack buffer overflow vulnerability exists in MuPDF 'jstestmain.c', which originates from a failure to perform sufficient bounds checking before copying user data into an undersized buffer. An attacker could us...

openSUSE Security Update : mupdf (openSUSE-2017-271)

This update for mupdf fixes the following vulnerabilities : - CVE-2017-5627: Integer overflow in the mujs implementation boo1022503 - CVE-2017-5628: Integer overflow in the mujs implementation boo1022504 - CVE-2017-5896: heap overflow boo1023761, boo1024679 - NULL pointer dereference in dodrawpag...

GLSA-201702-12 : MuPDF: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201702-12 MuPDF: Multiple vulnerabilities Multiple vulnerabilities have been discovered in MuPDF. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to open a specially...

MuPDF: Multiple vulnerabilities

Background A lightweight PDF, XPS, and E-book viewer. Description Multiple vulnerabilities have been discovered in MuPDF. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted PDF document using MuPDF possibly...

Artifex MuPDF mujstest 1.10a - Null Pointer Dereference

Artifex MuPDF mujstest 1.10a - Null Pointer Dereference Source: http://seclists.org/oss-sec/2017/q1/458 Description: Mujstest, which is part of mupdf is a scriptable tester for mupdf + js. A crafted image posted early for another issue, causes a stack overflow. The complete ASan output: mujstest...

Artifex MuPDF Null Pointer Reference Denial of Service Vulnerability

Artifex Software MuPDF is a free, lightweight PDF reader from Artifex Software, USA. A denial of service vulnerability exists in Artifex MuPDF. An attacker could exploit this vulnerability to crash the application, resulting in a denial of service...

Artifex MuPDF mujstest 1.10a - Null Pointer Dereference

Source: http://seclists.org/oss-sec/2017/q1/458 Description: Mujstest, which is part of mupdf is a scriptable tester for mupdf + js. A crafted image posted early for another issue, causes a stack overflow. The complete ASan output: mujstest $FILE ==32127==ERROR: AddressSanitizer:...

CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

Code injection

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

DEBIAN-CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

UBUNTU-CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

CVE-2016-8674

The CVE-2016-8674 vulnerability affects MuPDF: the pdf_to_num function in pdf-object.c is exploitable before version 1.10, allowing a crafted PDF file to cause a use-after-free and application crash (denial of service). Remediation: upgrade MuPDF to 1.10 or later. Other related CVEs (e.g., CVE-20...

CVE-2016-8674

The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file...

CVE-2017-5896

Heap-based buffer overflow in the fzsubsamplepixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted image...

DEBIAN-CVE-2017-5896

Heap-based buffer overflow in the fzsubsamplepixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted image...

CVE-2017-5896

Heap-based buffer overflow in the fzsubsamplepixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted image...

ALPINE-CVE-2017-5896

Heap-based buffer overflow in the fzsubsamplepixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted image...