| Severity |
|
| Remote |
|
| Type |
| + |
Arbitrary code execution |
|
| Description |
| + |
Artifex Mupdf version 1.12.0 contains a use-after-free vulnerability in fz_keep_key_storable that can result in DOS / Possible code execution. This attack appear to be exploitable via Victim opens a specially crafted PDF. |
|
| References |
| + |
https://bugs.ghostscript.com/show_bug.cgi?id=698825 |
| + |
https://bugs.ghostscript.com/show_bug.cgi?id=698873 |
| + |
https://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=321ba1de287016b0036bf4a56ce774ad11763384 |
|
| Notes |
|