AVG-599

Package libmupdf, mupdf, mupdf-gl, mupdf-tools
Status Fixed
Severity High
Type arbitrary code execution
Affected 1.12.0-1
Fixed 1.12.0-2
Current 1.14.0-1 [community]
Ticket None
Created Tue Jan 30 00:01:17 2018
Issue Severity Remote Type Description
CVE-2017-17858 High No Arbitrary code execution
Heap-based buffer overflow in the ensure_solid_xref function in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 allows an attacker to potentially execute arbitrary...
Date Advisory Package Description
30 Jan 2018 ASA-201801-30 mupdf-tools arbitrary code execution
30 Jan 2018 ASA-201801-29 libmupdf arbitrary code execution
30 Jan 2018 ASA-201801-28 mupdf-gl arbitrary code execution
30 Jan 2018 ASA-201801-27 mupdf arbitrary code execution