CVE-2019-6131

Опубликовано: 11 янв. 2019

Источник: debian

EPSS Низкий

Описание

svg-run.c in Artifex MuPDF 1.14.0 has infinite recursion with stack consumption in svg_run_use_symbol, svg_run_element, and svg_run_use, as demonstrated by mutool.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mupdf	fixed	1.14.0+ds1-3		package
mupdf	not-affected		stretch	package
mupdf	not-affected		jessie	package

Примечания

https://bugs.ghostscript.com/show_bug.cgi?id=700442
http://www.ghostscript.com/cgi-bin/findgit.cgi?c8f7e48ff74720a5e984ae19d978a5ab4d5dde5b

EPSS

Процентиль: 43%

0.00208

Низкий

Связанные уязвимости

CVE-2019-6131

CVSS3: 5.5

ubuntu

около 7 лет назад

svg-run.c in Artifex MuPDF 1.14.0 has infinite recursion with stack consumption in svg_run_use_symbol, svg_run_element, and svg_run_use, as demonstrated by mutool.

CVE-2019-6131

CVSS3: 5.5

nvd

около 7 лет назад

svg-run.c in Artifex MuPDF 1.14.0 has infinite recursion with stack consumption in svg_run_use_symbol, svg_run_element, and svg_run_use, as demonstrated by mutool.

GHSA-p4v2-j6v4-fjv7

CVSS3: 5.5

github

больше 3 лет назад

svg-run.c in Artifex MuPDF 1.14.0 has infinite recursion with stack consumption in svg_run_use_symbol, svg_run_element, and svg_run_use, as demonstrated by mutool.

EPSS

Процентиль: 43%

0.00208

Низкий