1
Candidate: CVE-2017-17858
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17858
5
https://github.com/mzet-/Security-Advisories/blob/master/mzet-adv-2017-01.md
7
Heap-based buffer overflow in the ensure_solid_xref function in
8
pdf/pdf-xref.c in Artifex MuPDF 1.12.0 allows a remote attacker to
9
potentially execute arbitrary code via a crafted PDF file, because xref
10
subsection object numbers are unrestricted.
14
https://bugs.ghostscript.com/show_bug.cgi?id=698819
20
upstream: http://git.ghostscript.com/?p=mupdf.git;a=commit;h=55c3f68d638ac1263a386e0aaa004bb6e8bde731
21
upstream_mupdf: needs-triage
22
precise/esm_mupdf: DNE
23
trusty_mupdf: needs-triage
24
xenial_mupdf: needs-triage
25
artful_mupdf: needs-triage
26
bionic_mupdf: needs-triage
27
devel_mupdf: needs-triage