CVE-2018-16648 — Improper Validation of Array Index in Mupdf

CWE-129 — Improper Validation of Array Index9 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 66.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Artifex Mupdf

Timeline

PublishedSep 6

Latest updateOct 16

Description

In Artifex MuPDF 1.13.0, the fz_append_byte function in fitz/buffer.c allows remote attackers to cause a denial of service (segmentation fault) via a crafted pdf file. This is caused by a pdf/pdf-device.c pdf_dev_alpha array-index underflow.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶Debianartifex/mupdf< 1.14.0+ds1-4+3

▶Ubuntuartifex/mupdf< 1.7a-1ubuntu0.1~esm1+2

▶NVDartifex/mupdf1.13.0

🔴Vulnerability Details

OSV

mupdf vulnerabilities↗2025-10-16

▶

GHSA

GHSA-gh3f-f9wp-hrhm: In Artifex MuPDF 1↗2022-05-13

▶

CVEList

CVE-2018-16648: In Artifex MuPDF 1↗2018-09-06

▶

OSV

CVE-2018-16648: In Artifex MuPDF 1↗2018-09-06

▶

📋Vendor Advisories

Ubuntu

MuPDF vulnerabilities↗2025-10-16

▶

Debian

CVE-2018-16648: mupdf - In Artifex MuPDF 1.13.0, the fz_append_byte function in fitz/buffer.c allows rem...↗2018

▶

💬Community

Bugzilla

CVE-2018-16648 mupdf: Array index underflow in pdf_dev_alpha resulting in a crash↗2018-09-07

▶

Bugzilla

CVE-2018-16647 CVE-2018-16648 mupdf: various flaws [fedora-all]↗2018-09-07

▶