Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-7321

Опубликовано: 13 июн. 2019
Источник: debian
EPSS Низкий

Описание

Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
mupdfnot-affectedpackage

Примечания

  • https://bugs.ghostscript.com/show_bug.cgi?id=700560

  • Introduced by: https://git.ghostscript.com/?p=mupdf.git;h=7d52765c5b8a5c76e459d148cd94dbaf51e562ec (1.15.0-rc1)

  • Fixed by: https://git.ghostscript.com/?p=mupdf.git;h=2be83b57e77938fddbb06bdffb11979ad89a9c7d (1.15.0-rc1)

EPSS

Процентиль: 85%
0.02615
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2019-7321

CVSS3: 9.8
ubuntu
больше 6 лет назад

Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.

nvd логотип

CVE-2019-7321

CVSS3: 9.8
nvd
больше 6 лет назад

Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.

github логотип

GHSA-h4r8-57xx-v3q2

CVSS3: 9.8
github
больше 3 лет назад

Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.

EPSS

Процентиль: 85%
0.02615
Низкий