Lucene search
GoogleOSV:CVE-2018-19881HistoryDec 06, 2018 - 12:29 a.m.
CVE-2018-19881
2018-12-0600:29:00
Google
osv.dev
12
In Artifex MuPDF 1.14.0, svg/svg-run.c allows remote attackers to cause a denial of service (recursive calls followed by a fitz/xml.c fz_xml_att crash from excessive stack consumption) via a crafted svg file, as demonstrated by mupdf-gl.
References
bugs.ghostscript.com/show_bug.cgi?id=700342
github.com/TeamSeri0us/pocs/tree/master/mupdf/20181203
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CNJNEX5EW6YH5OARXXSSXW4HHC5PIBSY/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SEK2EHVNREJ7XZMFF2MXRWKIF4IBHPNE/
Related
debiancve
debiancve
CVE-2018-19881
2018-12-06 00:29:00
prion
prion
Design/Logic Flaw
2018-12-06 00:29:00
nvd
nvd
CVE-2018-19881
2018-12-06 00:29:00
cve
cve
CVE-2018-19881
2018-12-06 00:29:00
cvelist
cvelist
CVE-2018-19881
2018-12-06 00:00:00
ubuntucve
ubuntucve
CVE-2018-19881
2018-12-06 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-12-06 03:51:27
nessus
nessus
Fedora 29 : mupdf (2019-15af6a9a07)
2019-05-28 00:00:00
Fedora 30 : mupdf (2019-befe3bd225)
2019-05-22 00:00:00
openvas
openvas
Fedora Update for mupdf FEDORA-2019-befe3bd225
2019-05-22 00:00:00
Fedora Update for mupdf FEDORA-2019-15af6a9a07
2019-05-26 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: mupdf-1.15.0-1.fc30
2019-05-22 01:41:33
[SECURITY] Fedora 29 Update: mupdf-1.15.0-1.fc29
2019-05-25 03:36:21