pdf/pdf-write.c in Artifex MuPDF before 1.12.0 mishandles certain length changes when a repair operation occurs during a clean operation, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted PDF document.
References
Link | Resource |
---|---|
http://www.ghostscript.com/cgi-bin/findgit.cgi?520cc26d18c9ee245b56e9e91f9d4fcae02be5f0 | Patch Third Party Advisory |
https://bugs.ghostscript.com/show_bug.cgi?id=698699 | Permissions Required Third Party Advisory |
https://www.debian.org/security/2018/dsa-4334 | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2017-12-27 17:08
Updated : 2024-02-28 16:04
NVD link : CVE-2017-17866
Mitre link : CVE-2017-17866
CVE.ORG link : CVE-2017-17866
JSON object : View
Products Affected
debian
- debian_linux
artifex
- mupdf
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer