CVE-2018-16647

In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in pdf/pdf-xref.c allows remote attackers to cause a denial of service (segmentation fault in fz_write_data in fitz/output.c) via a crafted pdf file.
Configurations

Configuration 1 (hide)

cpe:2.3:a:artifex:mupdf:1.13.0:*:*:*:*:*:*:*

History

12 Sep 2024, 17:15

Type Values Removed Values Added
References
  • () https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=351c99d8ce23bbf7099dbd52771a095f67e45a2c -

Information

Published : 2018-09-06 23:29

Updated : 2024-09-12 17:15


NVD link : CVE-2018-16647

Mitre link : CVE-2018-16647

CVE.ORG link : CVE-2018-16647


JSON object : View

Products Affected

artifex

  • mupdf
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer