Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex jbig2dec vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-12268
jbig2_image_compose in jbig2_image.c in Artifex jbig2dec prior to 0.18 has a heap-based buffer overflow.
Artifex Jbig2dec
Debian Debian Linux 9.0
Opensuse Leap 15.1
6.8
CVSSv2
CVE-2016-8729
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send...
Artifex Mupdf 1.9
6.8
CVSSv2
CVE-2017-7975
Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted JBIG2 file, leading to a denial of service (application crash) or possibly executi...
Artifex Jbig2dec 0.13
5.8
CVSSv2
CVE-2017-7976
Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of an integer overflow in the jbig2_image_compose function in jbig2_image.c during operations on a crafted .jb2 file, leading to a denial of service (application crash) or disclosure of sensitive information from...
Artifex Jbig2dec 0.13
5.8
CVSSv2
CVE-2017-7885
Artifex jbig2dec 0.13 has a heap-based buffer over-read leading to denial of service (application crash) or disclosure of sensitive information from process memory, because of an integer overflow in the jbig2_decode_symbol_dict function in jbig2_symbol_dict.c in libjbig2dec.a dur...
Artifex Jbig2dec 0.13
4.3
CVSSv2
CVE-2016-9601
ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, j...
Artifex Gpl Ghostscript
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Artifex Jbig2dec
4.3
CVSSv2
CVE-2017-9216
libjbig2dec.a in Artifex jbig2dec 0.13, as used in MuPDF and Ghostscript, has a NULL pointer dereference in the jbig2_huffman_get function in jbig2_huffman.c. For example, the jbig2dec utility will crash (segmentation fault) when parsing an invalid file.
Artifex Jbig2dec 0.13
Debian Debian Linux 9.0
NA
CVE-2023-46361
Artifex Software jbig2dec v0.20 exists to contain a SEGV vulnerability via jbig2_error at /jbig2dec/jbig2.c.
Artifex Jbig2dec 0.20
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started