Erez

**Name of the Vulnerable Software and Affected Versions** Artifex MuPDF version 1.14 **Description** The issue is related to the usage of an uninitialized variable in the function `fz load jpeg`, which can result in a heap overflow. This allows an attacker to execute arbitrary code. **Recommendations** For Artifex MuPDF version 1.14, consider updating to a newer version that contains a fix for this issue, as using an uninitialized variable in the `fz load jpeg` function poses a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.