CVE-2016-8728

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs ...

CVE-2016-8728

The CVE-2016-8728 entry relates to Artifex MuPDF’s Fitz library, where a heap out-of-bounds write in the Fitz graphical code can be triggered by opening a specially crafted PDF in a vulnerable MuPDF reader, leading to heap metadata corruption and potential code execution. Public documents confirm...

openSUSE Security Update : mupdf (openSUSE-2017-1300)

This update for mupdf fixes the following issues : Security issues fixed : - CVE-2017-7976: integer overflow jbig2imagecompose function in jbig2image.c during operations on a crafted .jb2 file boo1052029. - CVE-2016-10221: countentries in pdf-layer.c allows for DoS boo1032140. - CVE-2016-8728: Fi...

MuPDF Fitz library font glyph scaling Code Execution Vulnerability(CVE-2016-8728)

Summary An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victi...

Fedora 25 : mupdf (2017-5135c91b36)

Fix for CVE-2016-8728 CVE-2016-8729 ---- Rebuild with new jbig2dec Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...