← Back

Artifex

artifex

256 CVEs • 10 products

Products (10)

Click to collapse
Toggle
Ghostscript
ghostscript
129 CVEs
Mupdf
mupdf
66 CVEs
Mujs
mujs
30 CVEs
Gpl Ghostscript
gpl_ghostscript
16 CVEs
Ghostscript Ghostxps
ghostscript_ghostxps
9 CVEs
Afpl Ghostscript
afpl_ghostscript
7 CVEs
Jbig2dec
jbig2dec
7 CVEs
Ghostscript Fonts
ghostscript_fonts
4 CVEs
Gsview
gsview
3 CVEs
Ghostpcl
ghostpcl
1 CVE

CVEs (256)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2016-10132
2Artifex
Fedoraproject
2Fedora
Mujs
May 13, 2026
Mar 24, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
regexp.c in Artifex Software, Inc. MuJS allows attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to regular expression compilation.
CVE-2017-7207
1Artifex
1Ghostscript
May 13, 2026
Mar 21, 2017
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
CVE-2016-10247
2Artifex
Debian
2Debian Linux
Mupdf
May 13, 2026
Mar 16, 2017
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
CVE-2016-10246
2Artifex
Debian
2Debian Linux
Mupdf
May 13, 2026
Mar 16, 2017
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
CVE-2017-6060
2Artifex
Debian
2Debian Linux
Mupdf
May 13, 2026
Mar 15, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Stack-based buffer overflow in jstest_main.c in mujstest in Artifex Software, Inc. MuPDF 1.10a allows remote attackers to have unspecified impact via a crafted image.
CVE-2013-5653
2Artifex
Debian
2Afpl Ghostscript
Debian Linux
May 13, 2026
Mar 7, 2017
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file.
CVE-2017-6196
1Artifex
1Afpl Ghostscript
May 13, 2026
Feb 24, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Multiple use-after-free vulnerabilities in the gx_image_enum_begin function in base/gxipixel.c in Ghostscript before ecceafe3abba2714ef9b432035fe0739d9b1a283 allow remote attackers to cause a denial of service (applicati...Show more
Multiple use-after-free vulnerabilities in the gx_image_enum_begin function in base/gxipixel.c in Ghostscript before ecceafe3abba2714ef9b432035fe0739d9b1a283 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document.Show less
CVE-2016-8674
1Artifex
1Mupdf
May 13, 2026
Feb 15, 2017
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
The pdf_to_num function in pdf-object.c in MuPDF before 1.10 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted file.
CVE-2017-5896
1Artifex
1Mupdf
May 13, 2026
Feb 15, 2017
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted image.
CVE-2017-5991
2Artifex
Debian
2Debian Linux
Mupdf
May 13, 2026
Feb 15, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An issue was discovered in Artifex MuPDF before 1912de5f08e90af1d9d0a9791f58ba3afdb9d465. The pdf_run_xobject function in pdf-op-run.c encounters a NULL pointer dereference during a Fitz fz_paint_pixmap_with_mask paintin...Show more
An issue was discovered in Artifex MuPDF before 1912de5f08e90af1d9d0a9791f58ba3afdb9d465. The pdf_run_xobject function in pdf-op-run.c encounters a NULL pointer dereference during a Fitz fz_paint_pixmap_with_mask painting operation. Versions 1.11 and later are unaffected.Show less
CVE-2016-9108
2Artifex
Fedoraproject
2Fedora
Mujs
May 13, 2026
Feb 3, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (application crash) via a crafte...Show more
Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (application crash) via a crafted regular expression.Show less
CVE-2017-5628
1Artifex
1Mujs
May 13, 2026
Jan 30, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An issue was discovered in Artifex Software, Inc. MuJS before 8f62ea10a0af68e56d5c00720523ebcba13c2e6a. The MakeDay function in jsdate.c does not validate the month, leading to an integer overflow when parsing a speciall...Show more
An issue was discovered in Artifex Software, Inc. MuJS before 8f62ea10a0af68e56d5c00720523ebcba13c2e6a. The MakeDay function in jsdate.c does not validate the month, leading to an integer overflow when parsing a specially crafted JS file.Show less
CVE-2017-5627
1Artifex
1Mujs
May 13, 2026
Jan 30, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsR_setproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow...Show more
An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsR_setproperty function in jsrun.c lacks a check for a negative array length. This leads to an integer overflow in the js_pushstring function in jsrun.c when parsing a specially crafted JS file.Show less
CVE-2016-9109
1Artifex
1Mujs
May 13, 2026
Jan 18, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Artifex Software MuJS allows attackers to cause a denial of service (crash) via vectors related to incomplete escape sequences. NOTE: this vulnerability exists due to an incomplete fix for CVE-2016-7563.
CVE-2016-7564
1Artifex
1Mujs
May 13, 2026
Jan 18, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Heap-based buffer overflow in the Fp_toString function in jsfunction.c in Artifex Software MuJS allows attackers to cause a denial of service (crash) via crafted input.
CVE-2016-7563
1Artifex
1Mujs
May 13, 2026
Jan 18, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The chartorune function in Artifex Software MuJS allows attackers to cause a denial of service (out-of-bounds read) via a * (asterisk) at the end of the input.
CVE-2016-10141
1Artifex
1Mujs
May 13, 2026
Jan 13, 2017
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An integer overflow vulnerability was observed in the regemit function in regexp.c in Artifex Software, Inc. MuJS before fa3d30fd18c348bb4b1f3858fb860f4fcd4b2045. The attack requires a regular expression with nested repe...Show more
An integer overflow vulnerability was observed in the regemit function in regexp.c in Artifex Software, Inc. MuJS before fa3d30fd18c348bb4b1f3858fb860f4fcd4b2045. The attack requires a regular expression with nested repetition. A successful exploitation of this issue can lead to code execution or a denial of service (buffer overflow) condition.Show less
CVE-2016-9294
1Artifex
1Mujs
May 6, 2026
Nov 12, 2016
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Artifex Software, Inc. MuJS before 5008105780c0b0182ea6eda83ad5598f225be3ee allows context-dependent attackers to conduct "denial of service (application crash)" attacks by using the "malformed labeled break/continue in...Show more
Artifex Software, Inc. MuJS before 5008105780c0b0182ea6eda83ad5598f225be3ee allows context-dependent attackers to conduct "denial of service (application crash)" attacks by using the "malformed labeled break/continue in JavaScript" approach, related to a "NULL pointer dereference" issue affecting the jscompile.c component.Show less
CVE-2016-9136
1Artifex
1Mujs
May 6, 2026
Nov 3, 2016
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent attackers to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" i...Show more
Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent attackers to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" issue.Show less
CVE-2016-7506
1Artifex
1Mujs
May 6, 2026
Oct 29, 2016
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An out-of-bounds read vulnerability was observed in Sp_replace_regexp function of Artifex Software, Inc. MuJS before 5000749f5afe3b956fc916e407309de840997f4a. A successful exploitation of this issue can lead to code exec...Show more
An out-of-bounds read vulnerability was observed in Sp_replace_regexp function of Artifex Software, Inc. MuJS before 5000749f5afe3b956fc916e407309de840997f4a. A successful exploitation of this issue can lead to code execution or denial of service condition.Show less