EPSS
Percentile
41.0%
MuPDF is vulnerable to denial of service (DoS) attacks. A malicious user can pass a malicious pdf file to the fz_skip_space function in pdf-xref.c to cause an infinite loop that can cause the application to crash.
fz_skip_space
pdf-xref.c
bugs.ghostscript.com/attachment.cgi?id=15230&action=diff
bugs.ghostscript.com/show_bug.cgi?id=699271
lists.debian.org/debian-lts-announce/2021/09/msg00013.html