CPE-283EFE3A-0275-485B-91ED-2188A12A1A3E Detail

CPE Details

Artifex MuPDF 1.3

Vendor

artifex

Product

mupdf

Version

1.3

Created

2019-06-12
09h53 +00:00

Modified

2019-06-12
09h53 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:artifex:mupdf:1.3:-::::::

Informations

Vendor

artifex

Product

mupdf

Version

1.3

Update

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-4216	2022-08-26 13h25 +00:00	A Floating point exception (division-by-zero) flaw was found in Mupdf for zero width pages in muraster.c. It is fixed in Mupdf-1.20.0-rc1 upstream.	5.5	Medium
CVE-2021-37220	2021-07-21 19h02 +00:00	MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. This can, for example, be seen with crafted "mutool draw" input.	5.5	Medium
CVE-2020-19609	2021-07-21 12h10 +00:00	Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service.	5.5	Medium
CVE-2020-16600	2020-12-09 20h06 +00:00	A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixmap dimensions, causing bander - a static - to point to previously freed memory instead of a newband_writer.	7.8	High
CVE-2020-26519	2020-10-02 03h34 +00:00	Artifex MuPDF before 1.18.0 has a heap based buffer over-write when parsing JBIG2 files allowing attackers to cause a denial of service.	5.5	Medium
CVE-2019-14975	2019-08-14 10h46 +00:00	Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string.	7.1	High
CVE-2018-1000036	2018-05-24 11h00 +00:00	In Artifex MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a denial of service (memory leak) via a crafted file.	5.5	Medium
CVE-2018-1000037	2018-05-24 11h00 +00:00	In Artifex MuPDF 1.12.0 and earlier, multiple reachable assertions in the PDF parser allow an attacker to cause a denial of service (assert crash) via a crafted file.	5.5	Medium
CVE-2018-1000038	2018-05-24 11h00 +00:00	In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file.	7.8	High
CVE-2018-1000039	2018-05-24 11h00 +00:00	In Artifex MuPDF 1.12.0 and earlier, multiple heap use after free bugs in the PDF parser could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted file.	6.3	Medium
CVE-2018-1000040	2018-05-24 11h00 +00:00	In Artifex MuPDF 1.12.0 and earlier, multiple use of uninitialized value bugs in the PDF parser could allow an attacker to cause a denial of service (crash) or influence program flow via a crafted file.	5.5	Medium
CVE-2017-17866	2017-12-23 16h00 +00:00	pdf/pdf-write.c in Artifex MuPDF before 1.12.0 mishandles certain length changes when a repair operation occurs during a clean operation, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted PDF document.	7.8	High
CVE-2017-15369	2017-10-16 01h00 +00:00	The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF before 2017-09-25 mishandles a certain case where a variable may reside in a register, which allows remote attackers to cause a denial of service (Fitz fz_drop_imp use-after-free and application crash) or possibly have unspecified other impact via a crafted PDF document.	7.8	High
CVE-2016-8674	2017-02-15 20h00 +00:00	The pdf_to_num function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted file.	5.5	Medium
CVE-2017-5896	2017-02-15 18h00 +00:00	Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted image.	5.5	Medium
CVE-2017-5991	2017-02-15 05h11 +00:00	An issue was discovered in Artifex MuPDF before 1912de5f08e90af1d9d0a9791f58ba3afdb9d465. The pdf_run_xobject function in pdf-op-run.c encounters a NULL pointer dereference during a Fitz fz_paint_pixmap_with_mask painting operation. Versions 1.11 and later are unaffected.	7.5	High
CVE-2016-6265	2016-09-22 13h00 +00:00	Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote attackers to cause a denial of service (crash) via a crafted PDF file.	5.5	Medium
CVE-2016-6525	2016-09-22 13h00 +00:00	Heap-based buffer overflow in the pdf_load_mesh_params function in pdf/pdf-shade.c in MuPDF allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a large decode array.	9.8	Critical
CVE-2014-2013	2014-03-03 15h00 +00:00	Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and earlier allows remote attackers to execute arbitrary code via a large number of entries in the ContextColor value of the Fill attribute in a Path element.	7.5

Artifex MuPDF 1.3

CPE Details

CPE Name: cpe:2.3:a:artifex:mupdf:1.3:-:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:artifex:mupdf:1.3:-::::::