Artifex Software MuPDF Resource Management Error Vulnerability

Artifex Software MuPDF is a free, lightweight PDF reader from Artifex Software, USA. A resource management error vulnerability exists in Artifex Software MuPDF library 1.17.0-rc1 and earlier versions, which stems from when a valid page is followed by an invalid pixmap-sized page, resulting in the...

PT-2020-14873 · Artifex +2 · Mupdf Library +2

Name of the Vulnerable Software and Affected Versions: Artifex Software, Inc. MuPDF library versions 1.17.0-rc1 and earlier Description: A Use After Free issue exists when a valid page is followed by a page with invalid pixmap dimensions, causing bander - a static - to point to previously freed...

Denial Of Service (DoS)

mupdf is vulnerable to denial of service. A NULL pointer dereference in the pdfrunxobject function in pdf-op-run.c during a Fitz fzpaintpixmapwithmask painting operation allows an attacker to crash the application...

Segmentation Fault

MuPDF is vulnerable to Segmentation fault. The vulnerability existed because of a page-number mishandling in cbz/mucbz.c, cbz/muimg.c, and svg/svg-doc.c...

Buffer Overflow

MuPDF is vulnerable to buffer overflow. This vulnerability allow attackers to execute arbitrary code via a crafted PDF file. This occurs with a large BDC property name that overflows the allocated size of a display list node...

Denial Of Service (DoS)

MuPDF is vulnerable to denial of service. The vulnerability allows remote attackers to cause a denial of service via a crafted pdf file...

Denial Of Service (DoS)

mupdf is vulnerable to denial of service. The fzappendbyte function in fitz/buffer.c due to an array-index underflow allows remote attackers to cause a denial of service through a segmentation fault via a malicious pdf file...

Denial Of Service (DoS)

mupdf is vulnerable to denial of service DoS. The vulnerability exists due to out-of-bounds read in fzrunt3glyph in fitz/font.c, allowing a malicious user to crash the application...

Debian DSA-4794-1 : mupdf - security update

A heap-based buffer overflow flaw was discovered in MuPDF, a lightweight PDF viewer, which may result in denial of service or the execution of arbitrary code if malformed documents are opened. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Debian: Security Advisory (DSA-4794-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 4794-1] mupdf security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4794-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 21, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4794-1] mupdf security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4794-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 21, 2020 https://www.debian.org/security/faq -...

DSA-4794-1 mupdf - security update

Bulletin has no description...

Buffer Over-Write

Artifex MuPDF is vulnerable to buffer over-write. It happens when parsing JBIG2 files allowing attackers to cause a denial of service...

mupdf:pdf_fuzzer: Crash in template_affine_N_near_fb0

Project: git://git.ghostscript.com/mupdf.git Detailed Report: https://oss-fuzz.com/testcase?key=4867473373134848 Project: mupdf Fuzzing Engine: honggfuzz Fuzz Target: pdffuzzer Job Type: honggfuzzasanmupdf Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x7ff23addb19e Crash State:...

Fedora 32 : mupdf / python-PyMuPDF / zathura-pdf-mupdf (2020-3cea1ac8f3)

mupdf 1.18.0 and depending packages Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...

Fedora 33 : mupdf / python-PyMuPDF / zathura-pdf-mupdf (2020-972ad7c8a8)

mupdf 1.18.0 and depending packages Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...

[SECURITY] Fedora 32 Update: zathura-pdf-mupdf-0.3.6-4.fc32

This plugin adds PDF support to zathura using the mupdf rendering engine...

[SECURITY] Fedora 32 Update: mupdf-1.18.0-2.fc32

MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...

Fedora: Security Advisory for zathura-pdf-mupdf (FEDORA-2020-3cea1ac8f3)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...