http://bugzilla.opensuse.org/show_bug.cgi?id=1094632 Bug ID: 1094632 Summary: VUL-0: CVE-2018-1000038: mupdf: stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.3 Hardware: Other URL: https://smash.suse.de/issue/206398/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: idonmez@suse.com Reporter: kbabioch@suse.com QA Contact: security-team@suse.de Found By: Security Response Team Blocker: --- rh#1582313 In MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file. References: https://bugzilla.redhat.com/show_bug.cgi?id=1582313 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1000038 http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-1000038.html https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5494 http://git.ghostscript.com/?p=mupdf.git;a=commitdiff;h=f597300439e62f5e921f0... -- You are receiving this mail because: You are on the CC list for the bug.