CVE-2017-7264

Metadata

medium
6.8
mupdf
CVE-2017-7264
cve.mitre.org, bugs.ghostscript.com, blogs.gentoo.org, git.ghostscript.com, bugs.debian.org
2017-03-26
2017-10-23 14:15
CVE-2017-7264 mupdf
2017-07-20 21:29
2017-06-16 19:22
2017-05-10 23:45
2017-04-14 10:19
2017-04-01 21:42
2017-03-28 21:03

Description

Use-after-free vulnerability in the fz_subsample_pixmap function in fitz/pixmap.c in Artifex Software, Inc. MuPDF 1.10a allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
trusty mupdf None
upstream mupdf 1.9a+ds1-3
xenial mupdf None

Unaffected

Release Package Reason
precise mupdf not-affected
precise/esm mupdf DNE
vivid/stable-phone-overlay mupdf DNE
vivid/ubuntu-core mupdf DNE
yakkety mupdf ignored
zesty mupdf not-affected
artful mupdf not-affected
devel mupdf not-affected