Описание
Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted image.
Ссылки
- Mailing ListPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.10 (включая)
cpe:2.3:a:artifex:mupdf:*:*:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00405
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 9 лет назад
Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted image.
CVSS3: 5.5
debian
почти 9 лет назад
Heap-based buffer overflow in the fz_subsample_pixmap function in fitz ...
CVSS3: 5.5
github
больше 3 лет назад
Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted image.
EPSS
Процентиль: 60%
0.00405
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125