ALT-PU-2014-1708-1
Closed vulnerabilities
Published: 2014-03-03
BDU:2015-04134
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Severity: HIGH (7.5)
References:
Published: 2014-03-03
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2014-2013
Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and earlier allows remote attackers to execute arbitrary code via a large number of entries in the ContextColor value of the Fill attribute in a Path element.
Severity: HIGH (7.5)
References:
- http://bugs.ghostscript.com/show_bug.cgi?id=694957
- http://bugs.ghostscript.com/show_bug.cgi?id=694957
- http://git.ghostscript.com/?p=mupdf.git%3Ba=commitdiff%3Bh=60dabde18d7fe12b19da8b509bdfee9cc886aafc
- http://git.ghostscript.com/?p=mupdf.git%3Ba=commitdiff%3Bh=60dabde18d7fe12b19da8b509bdfee9cc886aafc
- openSUSE-SU-2014:0309
- openSUSE-SU-2014:0309
- 20140120 0day - MuPDF Stack-based Buffer Overflow in xps_parse_color()
- 20140120 0day - MuPDF Stack-based Buffer Overflow in xps_parse_color()
- [oss-security] 20140218 Re: CVE request: MuPDF Stack-based Buffer Overflow in xps_parse_color()
- [oss-security] 20140218 Re: CVE request: MuPDF Stack-based Buffer Overflow in xps_parse_color()
- 58904
- 58904
- DSA-2951
- DSA-2951
- 31090
- 31090
- http://www.hdwsec.fr/blog/mupdf.html
- http://www.hdwsec.fr/blog/mupdf.html
- 102340
- 102340
- 65036
- 65036