[Bug 1094628] New: VUL-0: CVE-2018-1000040: mupdf: Improper Initialization of values in the PDF parser
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628 Bug ID: 1094628 Summary: VUL-0: CVE-2018-1000040: mupdf: Improper Initialization of values in the PDF parser Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.0 Hardware: Other URL: https://smash.suse.de/issue/206400/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: idonmez@suse.com Reporter: kbabioch@suse.com QA Contact: security-team@suse.de Found By: Security Response Team Blocker: --- rh#1582311 In MuPDF 1.12.0 and earlier, multiple use of uninitialized value bugs in the PDF parser could allow an attacker to cause a denial of service (crash) or influence program flow via a crafted file. References: https://bugzilla.redhat.com/show_bug.cgi?id=1582311 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1000040 http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-1000040.html https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5609 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5603 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5600 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5596 http://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=83d4dae44c71816c084a6... https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5610 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628#c1
Karol Babioch
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628#c2
Karol Babioch
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628
Karol Babioch
http://bugzilla.opensuse.org/show_bug.cgi?id=1094628
Karol Babioch
participants (1)
-
bugzilla_noreply@novell.com