CVE-2021-4216
MEDIUMMupdf < 1.20.0 - Denial of Service via Zero Width Page Handling
Title source: llmDescription
A Floating point exception (division-by-zero) flaw was found in Mupdf for zero width pages in muraster.c. It is fixed in Mupdf-1.20.0-rc1 upstream.
References (2)
Core 2
Core References
Permissions Required x_refsource_misc
https://bugs.ghostscript.com/show_bug.cgi?id=704834
Patch, Third Party Advisory x_refsource_misc
https://github.com/ArtifexSoftware/mupdf/commit/22c47acbd52949421f8c7cb46ea1556827d0fcbf
Scores
CVSS v3
5.5
EPSS
0.0023
EPSS Percentile
13.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-369
Status
published
Products (1)
artifex/mupdf
< 1.20.0
Published
Aug 26, 2022
Tracked Since
Feb 18, 2026