CVE-2017-7264
published 2017-03-26CVE-2017-7264: Use-after-free vulnerability in the fz_subsample_pixmap function in fitz/pixmap.c in Artifex MuPDF 1.10a allows remote attackers to cause a denial of service…
medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
Use-after-free vulnerability in the fz_subsample_pixmap function in fitz/pixmap.c in Artifex MuPDF 1.10a allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | mupdf | — | — |
| artifex | mupdf | >= 0 < 1.9a+ds1-3 | 1.9a+ds1-3 |
| artifex | mupdf | >= 0 < 1.9a+ds1-3 | 1.9a+ds1-3 |
| artifex | mupdf | >= 0 < 1.9a+ds1-3 | 1.9a+ds1-3 |
| artifex | mupdf | >= 0 < 1.9a+ds1-3 | 1.9a+ds1-3 |
| debian | mupdf | < mupdf 1.9a+ds1-3 (bookworm) | mupdf 1.9a+ds1-3 (bookworm) |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
osv5.3MEDIUM