PT-2019-13905 · Artifex+1 · Mupdf+1

Suhwan

Publicado

2019-08-14

Atualizado

2024-07-31

CVE-2019-14975

CVSS v3.1

7.1

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Artifex MuPDF versions prior to 1.16.0

Description The issue is related to a heap-based buffer over-read in the fz chartorune function in fitz/string.c. This occurs because pdf/pdf-op-filter.c does not check for a missing string, leading to the over-read.

Recommendations For versions prior to 1.16.0, update to version 1.16.0 or later to resolve the issue.

Exploit

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

ALT-PU-2020-3475

ALT-PU-2020-3484

ALT-PU-2024-9899

CVE-2019-14975

Produtos afetados

Alt Linux

Mupdf

PT-2019-13905 · Artifex+1 · Mupdf+1

CVE-2019-14975

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 24