CVE-2018-5686

In MuPDF 1.12.0, there is an infinite loop vulnerability and application hang in the pdf_parse_array function (pdf/pdf-parse.c) because EOF is not considered. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted pdf file.
Configurations

Configuration 1

cpe:2.3:a:artifex:mupdf:1.12.0:-:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Information

Published : 2018-01-14 02:29

Updated : 2020-01-30 06:05


NVD link : CVE-2018-5686

Mitre link : CVE-2018-5686

Products Affected
No products.
CWE