Ubuntu: Security Advisory (USN-7888-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2017-15128

Malware in sbrugna...

EUVD-2016-7446

Malware in sbrugna...

EUVD-2021-23792

Malware in sbrugna...

EUVD-2017-14971

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-1000051

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Artifex Mupdf version 1.12.0 contains a Use After Free vulnerability in fzkeepkeystorable that can result in DOS / Possible code execution. This attack appear t...

Linux Distros Unpatched Vulnerability : CVE-2020-16600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixma...

Linux Distros Unpatched Vulnerability : CVE-2018-6544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pdfloadobjstm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could reference the object stream recursively and therefore run out of error stack, which allows remote...

Linux Distros Unpatched Vulnerability : CVE-2017-17866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pdf/pdf-write.c in Artifex MuPDF before 1.12.0 mishandles certain length changes when a repair operation occurs during a clean operation, which allows remote...

Linux Distros Unpatched Vulnerability : CVE-2018-5686

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MuPDF 1.12.0, there is an infinite loop vulnerability and application hang in the pdfparsearray function pdf/pdf-parse.c because EOF is not considered. Remot...

Linux Distros Unpatched Vulnerability : CVE-2016-8674

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The pdftonum function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service use-after-free and application crash via a craft...

Linux Distros Unpatched Vulnerability : CVE-2023-51106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A floating point exception divide-by-zero vulnerability was discovered in mupdf 1.23.4 in function pnmbinaryreadimage of load-pnm.c when fzcolorspacen returns...

Linux Distros Unpatched Vulnerability : CVE-2021-37220

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. This can, fo...

Linux Distros Unpatched Vulnerability : CVE-2021-3407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory corruption and other potential consequences. CVE-2021-3407 Note...

Debian dla-4278 : libmupdf-dev - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4278 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4278-1 [email protected] https://www.debian.org/lts/security/...

Linux Distros Unpatched Vulnerability : CVE-2023-51107

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A floating point exception divide-by-zero vulnerability was discovered in Artifex MuPDF 1.23.4 in functon computecolor of jquant2.c. NOTE: this is disputed by t...

Linux Distros Unpatched Vulnerability : CVE-2017-7264

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the fzsubsamplepixmap function in fitz/pixmap.c in Artifex MuPDF 1.10a allows remote attackers to cause a denial of service...

Linux Distros Unpatched Vulnerability : CVE-2018-1000038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdflookupcmapfull in pdf/pdf- cmap.c could allow an attacker to execute arbitrary code...

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime through the /pdf/pdf-font-add.c component. An attacker can obtain sensitive information by exploiting a memory leak issue. Remediation Upgrade mupdf to version 1.18.0 or higher...

MuPDF Object Double Release Vulnerability

MuPDF is a free and open source software library written in C, is the PDF and XPS parsing and rendering engine . MuPDF 1.18.0 suffers from an object double release vulnerability during linearization. An attacker could exploit this vulnerability to cause memory corruption...