In Artifex MuPDF 1.12.0, the pdfreadnew_xref function in pdf/pdf-xref.c allows remote attackers to cause a denial of service (segmentation violation and application crash) via a crafted pdf file.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.15.0+ds1-1", "binary_name": "libmupdf-dev" }, { "binary_version": "1.15.0+ds1-1", "binary_name": "mupdf" }, { "binary_version": "1.15.0+ds1-1", "binary_name": "mupdf-dbgsym" }, { "binary_version": "1.15.0+ds1-1", "binary_name": "mupdf-tools" }, { "binary_version": "1.15.0+ds1-1", "binary_name": "mupdf-tools-dbgsym" } ] }