NA

CVE-2021-37220

Published: 21/07/2021 Updated: 22/07/2021

Vulnerability Summary

MuPDF up to and including 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. This can, for example, be seen with crafted "mutool draw" input.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vendor Advisories

Debian Bug report logs - #991402 mupdf: CVE-2021-37220 Package: src:mupdf; Maintainer for src:mupdf is Kan-Ru Chen (陳侃如) <koster@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 22 Jul 2021 18:51:01 UTC Severity: important Tags: fixed-upstream, pending, security, upstream Found in ...
MuPDF through 1181 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table This can, for example, be seen with crafted "mutool draw" input ...