OSV-2018-245

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/mupdf/OSV-2018-245.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2018-245

Published

2021-01-15T00:00:05.471739Z

Modified

2022-04-13T03:04:31.216503Z

Summary

Use-of-uninitialized-value in fz_keep_imp

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6837

Crash type: Use-of-uninitialized-value
Crash state:
fz_keep_imp
pdf_copy_pattern_gstate
pdf_show_pattern

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6837

Affected packages

OSS-Fuzz / mupdf

Package

Name: mupdf
Purl: pkg:generic/mupdf

Affected ranges

Type: GIT
Repo: git://git.ghostscript.com/mupdf.git
Events: Introduced

11ee2bcf4d23bcb443d6b39caa2ac62fdd9920b2

Fixed

04c37454b9ef5a0576c3dd34adc7426450bf18e7

Affected versions

1.*

1.13.0

1.13.0-rc1

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "9086386263154498dcb18c96f1e1630903b21a3c:d9bc8c6f7fb2e3ec7035bebaaee0edcf59287705",
    "fixed_range": "5606857245ed81253a4e06bed73eaa813e684070:04c37454b9ef5a0576c3dd34adc7426450bf18e7"
}