MitreVULNRICHMENT:CVE-2018-1000036

HistoryMay 24, 2018 - 1:00 p.m.

CVE-2018-1000036

2018-05-2413:00:00

mitre

github.com

AI Score

6.5

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

In Artifex MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a denial of service (memory leak) via a crafted file.

References

bugs.chromium.org/p/oss-fuzz/issues/detail?id=5502

bugs.ghostscript.com/show_bug.cgi?id=698887

cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=8aa2bd34065d2844aae778bd4cc20c74bbcd9406

lists.debian.org/debian-lts-announce/2021/09/msg00013.html

security.gentoo.org/glsa/201811-15