6 matches found
Fedora 25 : mujs (2017-dc6023e849)
Security fix for CVE-2016-10132, CVE-2016-10133, CVE-2016-10141, CVE-2017-5627, CVE-2017-5628. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
Fedora 24 : mujs (2017-624e2eeda0)
Security fix for CVE-2016-10132, CVE-2016-10133, CVE-2016-10141, CVE-2017-5627, CVE-2017-5628. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
openSUSE Security Update : mupdf (openSUSE-2017-271)
This update for mupdf fixes the following vulnerabilities : - CVE-2017-5627: Integer overflow in the mujs implementation boo1022503 - CVE-2017-5628: Integer overflow in the mujs implementation boo1022504 - CVE-2017-5896: heap overflow boo1023761, boo1024679 - NULL pointer dereference in dodrawpag...
CVE-2017-5627
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsRsetproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow in the jspushstring function in jsrun.c when parsing a specially crafted JS...
CVE-2017-5627
The CVE-2017-5627 issue affects Artifex MuJS and is caused by jsR_setproperty not checking for a negative array length, leading to an integer overflow in js_pushstring when parsing a crafted JS file. The vulnerability is stated for MuJS versions before 4006739a28367c708dea19aeb19b8a1a9326ce08. Re...
CVE-2017-5627
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsRsetproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow in the jspushstring function in jsrun.c when parsing a specially crafted JS...