CVE-2016-6525

Priority
Description
Heap-based buffer overflow in the pdf_load_mesh_params function in
pdf/pdf-shade.c in MuPDF allows remote attackers to cause a denial of
service (crash) or execute arbitrary code via a large decode array.
References
Bugs
Notes
Package
Source: mupdf (LP Ubuntu Debian)
Upstream:released (1.9a+ds1-1.2)
Ubuntu 18.04 LTS:not-affected (1.9a+ds1-1.2)
Ubuntu 20.04 LTS:not-affected (1.9a+ds1-1.2)
Ubuntu 21.10:not-affected (1.9a+ds1-1.2)
Ubuntu 22.04 LTS:not-affected (1.9a+ds1-1.2)
Ubuntu 14.04 ESM:DNE (trusty was needed)
Patches:
Upstream:http://git.ghostscript.com/?p=mupdf.git;h=39b0f07dd960f34e7e6bf230ffc3d87c41ef0f2e
More Information

Updated: 2022-04-25 00:17:47 UTC (commit ecc1009cb19540b950de59270950018900f37f15)