Sebastian Rasmussen

**Name of the Vulnerable Software and Affected Versions** MuPDF version 1.23.4 **Description** A floating point exception vulnerability was discovered in the `bmp decompress rle4()` function of MuPDF, related to a divide-by-zero error. This issue may allow a remote attacker to cause a denial of service. **Recommendations** For MuPDF version 1.23.4, consider disabling the `bmp decompress rle4()` function as a temporary workaround until a patch is available. Restrict access to the `load-bmp.c` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Artifex MuPDF version 1.23.4 **Description** A floating point exception (divide-by-zero) vulnerability was discovered in the function `fz new pixmap from float data()` of `pixmap.c`. This issue is related to a division by zero error. Exploitation of this vulnerability may allow a remote attacker to cause a denial of service. **Recommendations** For Artifex MuPDF version 1.23.4, as a temporary workaround, consider disabling the `fz new pixmap from float data()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Artifex MuPDF version 1.23.4 **Description** A floating point exception (divide-by-zero) vulnerability was discovered in the `pnm binary read image()` function of load-pnm.c when `span` equals zero. This issue may allow a remote attacker to cause a denial of service. **Recommendations** For Artifex MuPDF version 1.23.4, as a temporary workaround, consider disabling the `pnm binary read image()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: A stack buffer overflow in the `pdf lookup cmap full` function in `pdf/pdf-cmap.c` could allow an attacker to execute arbitrary code via a crafted file. This issue affects the MuPDF library, which is used for rendering PDF files. Recommendations: For Artifex MuPDF versions 1.12.0 and earlier, consider disabling the `pdf lookup cmap full` function until a patch is available to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue is related to multiple use of uninitialized value bugs in the PDF parser, which could allow an attacker to cause a denial of service (crash) or influence program flow via a crafted file. Recommendations: For Artifex MuPDF versions 1.12.0 and earlier, update to a version later than 1.12.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue is related to multiple heap use after free bugs in the PDF parser, which could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted file. Recommendations: For Artifex MuPDF versions 1.12.0 and earlier, update to a version later than 1.12.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: MuPDF versions 1.12.0 and earlier Description: The issue is related to multiple memory leaks in the PDF parser, which can be exploited by an attacker to cause a denial of service (memory leak) via a crafted file. Recommendations: For MuPDF versions 1.12.0 and earlier, consider updating to a version later than 1.12.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue allows an attacker to cause a denial of service via a crafted file, exploiting multiple reachable assertions in the PDF parser. Recommendations: For Artifex MuPDF versions 1.12.0 and earlier, consider updating to a version later than 1.12.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: MuPDF versions prior to the version that fixes the issue in mupdf-20090223-win32 SumatraPDF versions 0.9.3 and earlier Description: The issue allows remote attackers to execute arbitrary code via a crafted PDF file. It is a heap-based buffer overflow in the `loadexponentialfunc` function in `mupdf/pdf function.c`. Recommendations: For MuPDF, update to a version that fixes the issue in mupdf-20090223-win32. For SumatraPDF versions 0.9.3 and earlier, update to a version later than 0.9.3. As a temporary workaround, consider disabling the `loadexponentialfunc` function until a patch is available.