33 matches found
CVE-2026-7233 Artifex MuPDF CFF Index subset-cff.c fz_subset_cff_for_gids out-of-bounds
A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...
CVE-2026-7233
A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...
MuPDF by Artifex contains integer overflow vulnerability.
Overview Artifex's MuPDF contains an integer overflow vulnerability, CVE-2026-3308, in versions up to and including 1.27.0. Using a specially crafted PDF, an attacker can trigger an integer overflow resulting in out-of-bounds heap writes. This heap corruption typically causes the application to...
EUVD-2026-17412
An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer overflow within the 'pdfloadimageimp' function. This allows a heap out-of-bounds write that could be exploited for arbitrary code executio...
CVE-2026-3308
An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer overflow within the 'pdfloadimageimp' function. This allows a heap out-of-bounds write that could be exploited for arbitrary code executio...
CVE-2026-3029
A flaw was found in PyMuPDF. This vulnerability, involving path traversal, allows an attacker to write arbitrary files to unintended locations on the system. The flaw is present in the embedded get function within the main.py file. Successful exploitation could lead to system compromise or data...
CVE-2025-15569
A flaw has been found in Artifex MuPDF up to 1.26.1 on Windows. The impacted element is the function getsystemdpi of the file platform/x11/winmain.c. This manipulation causes uncontrolled search path. The attack requires local access. The attack is considered to have high complexity. The...
CVE-2025-15569 Artifex MuPDF win_main.c get_system_dpi uncontrolled search path
A flaw has been found in Artifex MuPDF up to 1.26.1 on Windows. The impacted element is the function getsystemdpi of the file platform/x11/winmain.c. This manipulation causes uncontrolled search path. The attack requires local access. The attack is considered to have high complexity. The...
EUVD-2026-5668
MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in fzfillpixmapfromdisplaylist when an exception occurs during display list rendering. The function accepts a caller-owned fzpixmap pointer but incorrectly drops the pixmap in its error handling path before rethrowing the...
The vulnerability of the pnm_binary_read_image() function in the MuPDF PDF viewer software, which allows a hacker to cause a service failure.
The vulnerability of the pnmbinaryreadimage function in the MuPDF PDF viewer software is related to division by zero. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the GlutAddSubMenu() function in the MuPDF PDF viewer software, which allows a hacker to trigger a service failure.
The vulnerability of the GlutAddSubMenu function in the MuPDF PDF viewer software is related to a memory leak through the MenuEntry variable. Exploiting this vulnerability could allow an attacker to cause a service failure...
DEBIAN-CVE-2023-51104
A floating point exception divide-by-zero vulnerability was discovered in Artifex MuPDF 1.23.4 in function pnmbinaryreadimage of load-pnm.c when span equals zero...
DEBIAN-CVE-2023-51103
A floating point exception divide-by-zero vulnerability was discovered in Artifex MuPDF 1.23.4 in the function fznewpixmapfromfloatdata of pixmap.c...
UBUNTU-CVE-2023-51104
A floating point exception divide-by-zero vulnerability was discovered in Artifex MuPDF 1.23.4 in function pnmbinaryreadimage of load-pnm.c when span equals zero...
UBUNTU-CVE-2020-26683
A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Software MuPDF 1.17.0 allows attackers to obtain sensitive information...
SUSE CVE-2016-6525
Heap-based buffer overflow in the pdfloadmeshparams function in pdf/pdf-shade.c in MuPDF allows remote attackers to cause a denial of service crash or execute arbitrary code via a large decode array...
SUSE CVE-2017-7264
Use-after-free vulnerability in the fzsubsamplepixmap function in fitz/pixmap.c in Artifex MuPDF 1.10a allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted document...
SUSE CVE-2017-14685
Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection starting at mupdf+0x000000000016aa61" on Windows. This occurs because xpsloadlinksinglyphs in...
SUSE CVE-2018-18662
There is an out-of-bounds read in fzrunt3glyph in fitz/font.c in Artifex MuPDF 1.14.0, as demonstrated by mutool...
SUSE CVE-2021-4216
A Floating point exception division-by-zero flaw was found in Mupdf for zero width pages in muraster.c. It is fixed in Mupdf-1.20.0-rc1 upstream...