cbcvebase.
CVE-2017-15587
published 2017-10-18

CVE-2017-15587: An integer overflow was discovered in pdf_read_new_xref_section in pdf/pdf-xref.c in Artifex MuPDF 1.11.

high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
An integer overflow was discovered in pdf_read_new_xref_section in pdf/pdf-xref.c in Artifex MuPDF 1.11.

Affected

6 ranges
VendorProductVersion rangeFixed in
artifexmupdf
artifexmupdf>= 0 < 1.11+ds1-21.11+ds1-2
artifexmupdf>= 0 < 1.11+ds1-21.11+ds1-2
artifexmupdf>= 0 < 1.11+ds1-21.11+ds1-2
artifexmupdf>= 0 < 1.11+ds1-21.11+ds1-2
debianmupdf< mupdf 1.11+ds1-2 (bookworm)mupdf 1.11+ds1-2 (bookworm)

CVSS provenance

nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH