Lucene search
Veracode Vulnerability DatabaseVERACODE:28380HistoryDec 06, 2020 - 4:18 a.m.
Buffer Overflow
2020-12-0604:18:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.011 Low
EPSS
Percentile
84.3%
MuPDF is vulnerable to buffer overflow. This vulnerability allow attackers to execute arbitrary code via a crafted PDF file. This occurs with a large BDC property name that overflows the allocated size of a display list node.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mupdf:stretch | eq | 1.9a+ds1-4+deb9u4 | |
| mupdf:stretch | eq | 1.9a+ds1-4+deb9u4 |
References
git.ghostscript.com/?p=mupdf.git;h=aaf794439e40a2ef544f15b50c20e657414dec7a
git.ghostscript.com/?p=mupdf.git;h=ed19bc806809ad10c4ddce515d375581b86ede85
archive.today/oi6bm
bugs.ghostscript.com/show_bug.cgi?id=701118
lists.debian.org/debian-lts-announce/2020/07/msg00019.html
lists.fedoraproject.org/archives/list/[email protected]/message/VUXKCY35PKC32IFHN4RBUCZ75OWEYVJH/
security-tracker.debian.org/tracker/CVE-2019-13290
www.debian.org/security/2020/dsa-4753
Related
debian
debian
[SECURITY] [DSA 4753-1] mupdf security update
2020-08-29 15:17:18
[SECURITY] [DSA 4753-1] mupdf security update
2020-08-29 15:17:18
[SECURITY] [DLA 2289-1] mupdf security update
2020-07-25 22:13:22
nessus
nessus
Debian DSA-4753-1 : mupdf - security update
2020-08-31 00:00:00
Fedora 30 : mupdf (2019-10f02ad597)
2019-11-12 00:00:00
Debian DLA-2289-1 : mupdf security update
2020-07-27 00:00:00
debiancve
debiancve
CVE-2019-13290
2019-07-04 22:15:10
cvelist
cvelist
CVE-2019-13290
2019-07-04 21:07:14
cve
cve
CVE-2019-13290
2019-07-04 22:15:10
ubuntucve
ubuntucve
CVE-2019-13290
2019-07-04 00:00:00
osv
osv
CVE-2019-13290
2019-07-04 22:15:10
mupdf - security update
2020-08-29 00:00:00
mupdf - security update
2020-07-26 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4753-1)
2020-08-30 00:00:00
Fedora Update for mupdf FEDORA-2019-10f02ad597
2019-11-12 00:00:00
Debian: Security Advisory (DLA-2289-1)
2020-07-26 00:00:00
nvd
nvd
CVE-2019-13290
2019-07-04 22:15:10
redhatcve
redhatcve
CVE-2019-13290
2022-05-20 23:01:40
prion
prion
Heap overflow
2019-07-04 22:15:00
fedora
fedora
[SECURITY] Fedora 30 Update: mupdf-1.16.1-1.fc30
2019-11-12 02:09:05