CVE-2023-51106
published 2023-12-26CVE-2023-51106: A floating point exception (divide-by-zero) vulnerability was discovered in mupdf 1.23.4 in function pnm_binary_read_image() of load-pnm.c when fz_colorspace_n…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A floating point exception (divide-by-zero) vulnerability was discovered in mupdf 1.23.4 in function pnm_binary_read_image() of load-pnm.c when fz_colorspace_n returns zero.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | mupdf | — | — |
| artifex | mupdf | >= 0 < 1.12.0+ds1-1ubuntu0.1~esm2 | 1.12.0+ds1-1ubuntu0.1~esm2 |
| artifex | mupdf | >= 0 < 1.16.1+ds1-1ubuntu1+esm2 | 1.16.1+ds1-1ubuntu1+esm2 |
| artifex | mupdf | >= 0 < 1.19.0+ds1-2ubuntu0.1~esm1 | 1.19.0+ds1-2ubuntu0.1~esm1 |
| artifex | mupdf | >= 0 < 1.23.10+ds1-1ubuntu0.1~esm1 | 1.23.10+ds1-1ubuntu0.1~esm1 |
| debian | mupdf | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH