Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-14685

Опубликовано: 22 сент. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.8

Описание

Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection starting at mupdf+0x000000000016aa61" on Windows. This occurs because xps_load_links_in_glyphs in xps/xps-link.c does not verify that an xps font could be loaded.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

1.12.0+ds1-1
cosmic

not-affected

1.12.0+ds1-1
devel

not-affected

1.12.0+ds1-1
esm-apps/bionic

not-affected

1.12.0+ds1-1
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [code not present]]
precise/esm

DNE

trusty

not-affected

code not present
trusty/esm

DNE

trusty was not-affected [code not present]

Показывать по

Ссылки на источники

EPSS

Процентиль: 48%
0.00247
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-14685

CVSS3: 7.8
nvd
больше 8 лет назад

Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection starting at mupdf+0x000000000016aa61" on Windows. This occurs because xps_load_links_in_glyphs in xps/xps-link.c does not verify that an xps font could be loaded.

debian логотип

CVE-2017-14685

CVSS3: 7.8
debian
больше 8 лет назад

Artifex MuPDF 1.11 allows attackers to cause a denial of service or po ...

github логотип

GHSA-hh5m-fj6m-hwjp

CVSS3: 7.8
github
больше 3 лет назад

Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection starting at mupdf+0x000000000016aa61" on Windows. This occurs because xps_load_links_in_glyphs in xps/xps-link.c does not verify that an xps font could be loaded.

EPSS

Процентиль: 48%
0.00247
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3