Vulnerabilities > Artifex > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-24 | CVE-2018-6187 | Out-of-bounds Write vulnerability in multiple products In Artifex MuPDF 1.12.0, there is a heap-based buffer overflow vulnerability in the do_pdf_save_document function in the pdf/pdf-write.c file. | 5.5 |
| 2018-01-14 | CVE-2018-5686 | Infinite Loop vulnerability in multiple products In MuPDF 1.12.0, there is an infinite loop vulnerability and application hang in the pdf_parse_array function (pdf/pdf-parse.c) because EOF is not considered. | 5.5 |
| 2017-05-24 | CVE-2017-9216 | NULL Pointer Dereference vulnerability in multiple products libjbig2dec.a in Artifex jbig2dec 0.13, as used in MuPDF and Ghostscript, has a NULL pointer dereference in the jbig2_huffman_get function in jbig2_huffman.c. | 6.5 |
| 2017-05-23 | CVE-2016-7977 | Information Exposure vulnerability in Artifex Ghostscript Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document. | 5.5 |
| 2017-05-12 | CVE-2017-8908 | Out-of-bounds Read vulnerability in Artifex Ghostscript 9.21 The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PostScript document. | 5.5 |
| 2017-04-03 | CVE-2017-5951 | NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20 The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. | 5.5 |
| 2017-04-03 | CVE-2016-10221 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Artifex Mupdf 1.10A The count_entries function in pdf-layer.c in Artifex Software, Inc. | 5.5 |
| 2017-04-03 | CVE-2016-10220 | NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20 The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. | 5.5 |
| 2017-04-03 | CVE-2016-10219 | Divide By Zero vulnerability in Artifex Ghostscript 9.20 The intersect function in base/gxfill.c in Artifex Software, Inc. | 5.5 |
| 2017-04-03 | CVE-2016-10218 | NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20 The pdf14_pop_transparency_group function in base/gdevp14.c in the PDF Transparency module in Artifex Software, Inc. | 5.5 |