CVE-2019-14975

Опубликовано: 14 авг. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5.8

CVSS3: 7.1

Описание

Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	code not present
disco	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 44%

0.0022

Низкий

5.8 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

CVE-2019-14975

CVSS3: 7.1

nvd

больше 6 лет назад

Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string.

CVE-2019-14975

CVSS3: 7.1

debian

больше 6 лет назад

Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_ch ...

GHSA-hw8w-v2vr-wp7m

CVSS3: 7.1

github

больше 3 лет назад

Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string.

EPSS

Процентиль: 44%

0.0022

Низкий

5.8 Medium

CVSS2

7.1 High

CVSS3

CVE-2019-14975

Описание

Пакет mupdf

Ссылки на источники

Связанные уязвимости