The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF prior to 2017-09-25 mishandles a certain case where a variable may reside in a register, which allows remote malicious users to cause a denial of service (Fitz fz_drop_imp use-after-free and application crash) or possibly have unspecified other impact via a crafted PDF document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
artifex mupdf |