Latest Artifex Security Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2020-10-02 CVE-2020-26519 Out-Of-Bounds Write vulnerability in Artifex Mupdf
Artifex MuPDF before 1.18.0 has a heap based buffer over-write when parsing JBIG2 files allowing attackers to cause a denial of service.
4.3
2020-09-03 CVE-2020-14373 USE After Free vulnerability in multiple products
A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25.
local
low complexity
artifex redhat CWE-416
2.1
2020-08-13 CVE-2020-24343 USE After Free vulnerability in Artifex Mujs
Artifex MuJS through 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.
6.8
2020-08-13 CVE-2020-16287 Out-Of-Bounds Write vulnerability in Artifex Ghostscript 9.50
A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3
2020-08-13 CVE-2020-16288 Classic Buffer Overflow vulnerability in Artifex Ghostscript 9.50
A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3
2020-08-13 CVE-2020-16289 Out-Of-Bounds Write vulnerability in Artifex Ghostscript 9.50
A buffer overflow vulnerability in cif_print_page() in devices/gdevcif.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3
2020-08-13 CVE-2020-16290 Out-Of-Bounds Write vulnerability in Artifex Ghostscript 9.50
A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3
2020-08-13 CVE-2020-16291 Out-Of-Bounds Write vulnerability in Artifex Ghostscript 9.50
A buffer overflow vulnerability in contrib/gdevdj9.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3
2020-08-13 CVE-2020-16292 Out-Of-Bounds Write vulnerability in Artifex Ghostscript 9.50
A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3
2020-08-13 CVE-2020-16293 Null Pointer Dereference vulnerability in Artifex Ghostscript 9.50
A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common() in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file.
4.3