Описание
Security update for mupdf
This update for mupdf fixes the following issues:
- CVE-2020-19609: Fixed heap-based buffer overflow in tiff_expand_colormap() when parsing TIFF files (boo#1190176)
- CVE-2020-16600: Fixed use-after-free when a valid page was followed by a page with invalid pixmap dimensions (boo#1190175)
Список пакетов
SUSE Package Hub 15 SP1
mupdf-1.12.0-bp153.2.3.1
mupdf-devel-static-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP2
mupdf-1.12.0-bp153.2.3.1
mupdf-devel-static-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP3
mupdf-1.12.0-bp153.2.3.1
mupdf-devel-static-1.12.0-bp153.2.3.1
openSUSE Leap 15.2
mupdf-1.12.0-bp153.2.3.1
mupdf-devel-static-1.12.0-bp153.2.3.1
openSUSE Leap 15.3
mupdf-1.12.0-bp153.2.3.1
mupdf-devel-static-1.12.0-bp153.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2021:1341-1
- SUSE Security Ratings
- SUSE Bug 1190175
- SUSE Bug 1190176
- SUSE CVE CVE-2020-16600 page
- SUSE CVE CVE-2020-19609 page
Описание
A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixmap dimensions, causing bander - a static - to point to previously freed memory instead of a newband_writer.
Затронутые продукты
SUSE Package Hub 15 SP1:mupdf-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP1:mupdf-devel-static-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP2:mupdf-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP2:mupdf-devel-static-1.12.0-bp153.2.3.1
Ссылки
- CVE-2020-16600
- SUSE Bug 1190175
Описание
Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service.
Затронутые продукты
SUSE Package Hub 15 SP1:mupdf-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP1:mupdf-devel-static-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP2:mupdf-1.12.0-bp153.2.3.1
SUSE Package Hub 15 SP2:mupdf-devel-static-1.12.0-bp153.2.3.1
Ссылки
- CVE-2020-19609
- SUSE Bug 1190176