rpm package
suse/mupdf&distro=SUSE Package Hub 15 SP2
pkg:rpm/suse/mupdf&distro=SUSE%20Package%20Hub%2015%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-19609 | — | < 1.12.0-bp153.2.3.1 | 1.12.0-bp153.2.3.1 | Jul 21, 2021 | Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service. | ||
| CVE-2020-16600 | — | < 1.12.0-bp153.2.3.1 | 1.12.0-bp153.2.3.1 | Dec 9, 2020 | A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixmap dimensions, causing bander - a static - to point to previously freed memory instead of a newband_writer. |
- CVE-2020-19609Jul 21, 2021affected < 1.12.0-bp153.2.3.1fixed 1.12.0-bp153.2.3.1
Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service.
- CVE-2020-16600Dec 9, 2020affected < 1.12.0-bp153.2.3.1fixed 1.12.0-bp153.2.3.1
A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixmap dimensions, causing bander - a static - to point to previously freed memory instead of a newband_writer.