CVE-2017-15369

Published: Oct 16, 2017

Modified: Sep 17, 2024

PUBLISHED

Description

The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF before 2017-09-25 mishandles a certain case where a variable may reside in a register, which allows remote attackers to cause a denial of service (Fitz fz_drop_imp use-after-free and application crash) or possibly have unspecified other impact via a crafted PDF document.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://git.ghostscript.com/?p=mupdf.git%3Bh=c2663e51238ec8256da7fc61ad580db891d9fe9a

x_refsource_CONFIRM

https://bugs.ghostscript.com/show_bug.cgi?id=698592

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-15369

Description

Affected Products

References