In Artifex MuPDF 1.12.0, the pdf_read_new_xref function in pdf/pdf-xref.c allows remote attackers to cause a denial of service (segmentation violation and application crash) via a crafted pdf file.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/102822 | Third Party Advisory VDB Entry |
https://bugs.ghostscript.com/show_bug.cgi?id=698916 | Exploit Issue Tracking Third Party Advisory |
https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=5e411a99604ff6be5db9e273ee84737204113299 | |
https://lists.debian.org/debian-lts-announce/2019/06/msg00027.html | |
https://security.gentoo.org/glsa/201811-15 | Third Party Advisory |
https://www.debian.org/security/2018/dsa-4334 | Third Party Advisory |
Configurations
History
11 Sep 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2018-01-24 21:29
Updated : 2024-09-11 17:15
NVD link : CVE-2018-6192
Mitre link : CVE-2018-6192
CVE.ORG link : CVE-2018-6192
JSON object : View
Products Affected
artifex
- mupdf
debian
- debian_linux
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer