Artifex MuPDF before 1.18.0 has a heap based buffer over-write when parsing JBIG2 files allowing attackers to cause a denial of service. Reference: https://bugs.ghostscript.com/show_bug.cgi?id=702937
Created mupdf tracking bugs for this issue: Affects: fedora-all [bug 1886339]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
FEDORA-2020-636624ecb6 has been pushed to the Fedora 34 stable repository. If problem still persists, please make note of it in this bug report.
FEDORA-2020-972ad7c8a8 has been pushed to the Fedora 33 stable repository. If problem still persists, please make note of it in this bug report.
FEDORA-2020-3cea1ac8f3 has been pushed to the Fedora 32 stable repository. If problem still persists, please make note of it in this bug report.