Unrated severityNVD Advisory· Published Jul 4, 2019· Updated Aug 4, 2024
CVE-2019-13290
CVE-2019-13290
Description
Artifex MuPDF 1.15.0 has a heap-based buffer overflow in fz_append_display_node located at fitz/list-device.c, allowing remote attackers to execute arbitrary code via a crafted PDF file. This occurs with a large BDC property name that overflows the allocated size of a display list node.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Artifex/MuPDFdescription
Patches
Vulnerability mechanics
References
5- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUXKCY35PKC32IFHN4RBUCZ75OWEYVJH/mitrevendor-advisoryx_refsource_FEDORA
- www.debian.org/security/2020/dsa-4753mitrevendor-advisoryx_refsource_DEBIAN
- archive.today/oi6bmmitrex_refsource_MISC
- bugs.ghostscript.com/show_bug.cgimitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2020/07/msg00019.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.