CVE-2016-8729
published 2018-04-24CVE-2016-8729: An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be…
PriorityP337high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
1.68%
74.0th percentile
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to trigger this vulnerability.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | jbig2dec | >= 0 < 0.13-4 | 0.13-4 |
| artifex | jbig2dec | >= 0 < 0.13-4 | 0.13-4 |
| artifex | jbig2dec | >= 0 < 0.13-4 | 0.13-4 |
| artifex | jbig2dec | >= 0 < 0.13-4 | 0.13-4 |
| artifex | mupdf | — | — |
| artifex_software_inc | mupdf | — | — |
| artifex_software_inc | mupdf | — | — |
| debian | jbig2dec | < jbig2dec 0.13-4 (bookworm) | jbig2dec 0.13-4 (bookworm) |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2016-8729: jbig2dec - An exploitable memory corruption vulnerability exists in the JBIG2 parser of Art...
vendor_debian·2016·CVSS 7.8
CVE-2016-8729 [HIGH] CVE-2016-8729: jbig2dec - An exploitable memory corruption vulnerability exists in the JBIG2 parser of Art...
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to trigger this vulnerability.
Scope: local
bookworm: resolved (fixed in 0.13-4)
bullseye: resolved (fixed in 0.13-4)
forky: resolved (fixed in 0.13-4)
sid: resolved (fixed in 0.13-4)
trixie: resolved (fixed in 0.13-4)
GHSA
GHSA-2cj5-5xv9-px48: An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1
ghsa_unreviewed·2022-05-13
CVE-2016-8729 [HIGH] CWE-119 GHSA-2cj5-5xv9-px48: An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to trigger this vulnerability.
OSV
CVE-2016-8729: An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1
osv·2018-04-24·CVSS 7.8
CVE-2016-8729 [HIGH] CVE-2016-8729: An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to trigger this vulnerability.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-8728 CVE-2016-8729 mupdf: Multiple vulnerabilities
bugzilla·2017-05-19·CVSS 7.8
CVE-2016-8728 [HIGH] CVE-2016-8728 CVE-2016-8729 mupdf: Multiple vulnerabilities
CVE-2016-8728 CVE-2016-8729 mupdf: Multiple vulnerabilities
Two vulnerabilities in mupdf were published by Talos.
CVE-2016-8729 - Artifex MuPDf JBIG2 Parser Code Execution Vulnerability
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to trigger this vulnerability.
https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0243
CVE-2016-8728 - MuPDF Fitz library font glyph scaling Code Execution Vulnerability
An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specia
Bugzilla
CVE-2016-8728 CVE-2016-8729 mupdf: Multiple vulnerabilities [fedora-all]
bugzilla·2017-05-19·CVSS 7.8
CVE-2016-8728 [HIGH] CVE-2016-8728 CVE-2016-8729 mupdf: Multiple vulnerabilities [fedora-all]
CVE-2016-8728 CVE-2016-8729 mupdf: Multiple vulnerabilities [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of F
https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0243https://bugs.ghostscript.com/show_bug.cgi?id=697395https://cgit.ghostscript.com/cgi-bin/cgit.cgi/jbig2dec.git/commit/?id=e698d5c11d27212aa1098bc5b1673a3378563092https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=1a7ef61410884daff8ff8391ddcecc3102acd989https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0243
2018-04-24
Published