Heap-Based Buffer Overflow in Artifex MuPDF Product by Artifex Software
CVE-2019-13290

7.8HIGH

Key Information:

Vendor
Artifex
Status
MuPDF
Vendor
CVE Published:
4 July 2019

Summary

Artifex MuPDF version 1.15.0 is vulnerable to a heap-based buffer overflow in the function fz_append_display_node, found in fitz/list-device.c. This security flaw allows attackers to exploit the vulnerability with a specially crafted PDF file that contains a large BDC property name. When processed, this oversized input causes the allocated size of a display list node to overflow, potentially enabling remote attackers to execute arbitrary code.

References

https://bugs.ghostscript.com/show_bug.cgi?id=701118
x_refsource_MISC
http://git.ghostscript.com/?p=mupdf.git%3Bh=aaf794439e40a...
x_refsource_MISC
http://git.ghostscript.com/?p=mupdf.git%3Bh=ed19bc806809a...
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.