Lucene search
GoogleOSV:CVE-2018-1000038HistoryMay 24, 2018 - 1:29 p.m.
CVE-2018-1000038
2018-05-2413:29:00
Google
osv.dev
8
EPSS
0.004
Percentile
75.2%
In MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file.
References
git.ghostscript.com/?p=mupdf.git%3Ba=commitdiff%3Bh=71ceebcf56e682504da22c4035b39a2d451e8ffd%3Bhp=7f82c01523505052615492f8e220f4348ba46995
git.ghostscript.com/?p=mupdf.git%3Ba=commitdiff%3Bh=f597300439e62f5e921f0d7b1e880b5c1a1f1607%3Bhp=093fc3b098dc5fadef5d8ad4b225db9fb124758b
bugs.chromium.org/p/oss-fuzz/issues/detail?id=5494
security.gentoo.org/glsa/201811-15
Related
debiancve
debiancve
CVE-2018-1000038
2018-05-24 13:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-06-12 13:23:23
prion
prion
Stack overflow
2018-05-24 13:29:00
cve
cve
CVE-2018-1000038
2018-05-24 13:29:00
cvelist
cvelist
CVE-2018-1000038
2018-05-24 13:00:00
nvd
nvd
CVE-2018-1000038
2018-05-24 13:29:00
ubuntucve
ubuntucve
CVE-2018-1000038
2018-05-24 00:00:00
nessus
nessus
GLSA-201811-15 : MuPDF: Multiple vulnerabilities
2018-11-27 00:00:00
gentoo
gentoo
MuPDF: Multiple vulnerabilities
2018-11-26 00:00:00