Multiple vulnerabilities have been found in MuPDF, a PDF file viewer, which
may result in denial of service or the execution of arbitrary code
CVE-2017-14685,
CVE-2017-14686,
and CVE-2017-14687
WangLin discovered that a crafted xps file can crash MuPDF and
potentially execute arbitrary code in several ways, since the
application m ...
An integer overflow leading to an out-of-bounds wrte has been found in mupdf <= 111 The parsing of a crafted PDF might allow an attacker to write controlled data to an arbitrary location in memory when performing truncated xref checks ...