CVE-2016-10246Out-of-bounds Write in Mupdf

CWE-787Out-of-bounds Write5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.3%
top 48.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Artifex MupdfDebian Linux
Timeline
PublishedMar 16
Latest updateMay 13

Description

Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

Debianartifex/mupdf< 1.11+ds1-1+3
NVDartifex/mupdf1.10

Also affects: Debian Linux 9.0

Patches

Patch: blogs.gentoo.orgPatch: blogs.gentoo.org

🔴Vulnerability Details

3
GHSA
GHSA-wvmr-8vvj-9cpr: Buffer overflow in the main function in jstest_main2022-05-13
CVEList
CVE-2016-10246: Buffer overflow in the main function in jstest_main2017-03-16
OSV
CVE-2016-10246: Buffer overflow in the main function in jstest_main2017-03-16

📋Vendor Advisories

1
Debian
CVE-2016-10246: mupdf - Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Sof...2016
CVE-2016-10246 — Out-of-bounds Write in Artifex Mupdf | cvebase