Unrated severityOSV Advisory· Published Dec 6, 2018· Updated Sep 12, 2024
CVE-2018-19882
CVE-2018-19882
Description
In Artifex MuPDF 1.14.0, the svg_run_image function in svg/svg-run.c allows remote attackers to cause a denial of service (href_att NULL pointer dereference and application crash) via a crafted svg file, as demonstrated by mupdf-gl.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CNJNEX5EW6YH5OARXXSSXW4HHC5PIBSY/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SEK2EHVNREJ7XZMFF2MXRWKIF4IBHPNE/mitrevendor-advisory
- www.ghostscript.com/cgi-bin/findgit.cgimitre
- bugs.ghostscript.com/show_bug.cgimitre
- github.com/TeamSeri0us/pocs/tree/master/mupdf/20181203mitre
News mentions
0No linked articles in our index yet.