Bug 2255928 (CVE-2023-51103, CVE-2023-51104, CVE-2023-51105, CVE-2023-51106, CVE-2023-51107)
Summary: | CVE-2023-51107 CVE-2023-51106 CVE-2023-51105 CVE-2023-51104 CVE-2023-51103 mupdf: Multiple vulnerabilities | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Patrick Del Bello <pdelbell> |
Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
Status: | NEW --- | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | mjg |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | Type: | --- | |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 2255929 | ||
Bug Blocks: |
Description
Patrick Del Bello
2023-12-26 20:40:47 UTC
Created mupdf tracking bugs for this issue: Affects: fedora-all [bug 2255929] None of those CVE links is accessible. As such, they provide no useful information. OP does not seem to care about accessibility of CVE information, it seems. In any case, publicly searchable CVEs give no information about the actual bug nor how to reproduce it nor the analysis, and the analysis has not been redone by the CVE reporter for 6 mupdf versions now, nor for upstream's extensive work beyond the latest release. If cannot confirm validity I will have to close the bug against mupdf accordingly. |