Security update for mupdf SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0405-1 Final 1 1 2018-02-08T18:33:29Z current 2018-02-08T18:33:29Z 2018-02-08T18:33:29Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mupdf This update for mupdf fixes several issues. These security issues were fixed: - CVE-2018-6187: Prevent heap-based buffer overflow in the do_pdf_save_document function. Remote attackers could leverage the vulnerability to cause a denial of service via a crafted pdf file (bsc#1077407). - CVE-2018-6544: pdf_load_obj_stm could have referenced the object stream recursively and therefore run out of error stack, which allowed remote attackers to cause a denial of service via a crafted PDF document (bsc#1079100). - CVE-2018-6192: The pdf_read_new_xref function allowed remote attackers to cause a denial of service (segmentation violation and application crash) via a crafted pdf file (bsc#1077755). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-02/msg00033.html E-Mail link for openSUSE-SU-2018:0405-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 mupdf-1.12.0-28.1 mupdf-devel-static-1.12.0-28.1 mupdf-1.12.0-28.1 as a component of openSUSE Leap 42.3 mupdf-devel-static-1.12.0-28.1 as a component of openSUSE Leap 42.3 In Artifex MuPDF 1.12.0, there is a heap-based buffer overflow vulnerability in the do_pdf_save_document function in the pdf/pdf-write.c file. Remote attackers could leverage the vulnerability to cause a denial of service via a crafted pdf file. CVE-2018-6187 openSUSE Leap 42.3:mupdf-1.12.0-28.1 openSUSE Leap 42.3:mupdf-devel-static-1.12.0-28.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00033.html https://www.suse.com/security/cve/CVE-2018-6187.html CVE-2018-6187 https://bugzilla.suse.com/1077407 SUSE Bug 1077407 In Artifex MuPDF 1.12.0, the pdf_read_new_xref function in pdf/pdf-xref.c allows remote attackers to cause a denial of service (segmentation violation and application crash) via a crafted pdf file. CVE-2018-6192 openSUSE Leap 42.3:mupdf-1.12.0-28.1 openSUSE Leap 42.3:mupdf-devel-static-1.12.0-28.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00033.html https://www.suse.com/security/cve/CVE-2018-6192.html CVE-2018-6192 https://bugzilla.suse.com/1077755 SUSE Bug 1077755 pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could reference the object stream recursively and therefore run out of error stack, which allows remote attackers to cause a denial of service via a crafted PDF document. CVE-2018-6544 openSUSE Leap 42.3:mupdf-1.12.0-28.1 openSUSE Leap 42.3:mupdf-devel-static-1.12.0-28.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00033.html https://www.suse.com/security/cve/CVE-2018-6544.html CVE-2018-6544 https://bugzilla.suse.com/1079100 SUSE Bug 1079100