CyberSec.Space Logo
Back to CVE Browser

CVE-2019-11411

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1400%
EPSS Percentile8.64th
PublishedApr 22, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

An issue was discovered in Artifex MuJS 1.0.5. The Number#toFixed() and numtostr implementations in jsnumber.c have a stack-based buffer overflow.

Affected Platforms (CPE)

πŸ“¦
Artifex

Mujs

= 1.0.5

References & Advisories

πŸ”— http://www.ghostscript.com/cgi-bin/findgit.cgi?da632ca08f240590d2dec786722ed08486ce1be6
πŸ”— http://www.securityfocus.com/bid/108093
πŸ”— https://bugs.ghostscript.com/show_bug.cgi?id=700938
πŸ”— https://github.com/ccxvii/mujs/commit/da632ca08f240590d2dec786722ed08486ce1be6
πŸ”— https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3RQXMWEOWCGLOLFBQSXBM3MBN33T4I5H/
πŸ”— https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/67PMOZV4DLVL2KGU2SV724QL7Y4PKWKU/
πŸ”— https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MFCRO74ORRIVWNVAX2MAMRY3THCTWLQI/
πŸ”— https://security.gentoo.org/glsa/202007-52

Related Vulnerabilities

CVE-2021-3379610.0

In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.

CVE-2019-127989.8

An issue was discovered in Artifex MuJS 1.0.5. regcompx in regexp.c does not restrict regular expression program size, leading to ...

CVE-2021-450059.8

Artifex MuJS v1.1.3 was discovered to contain a heap buffer overflow which is caused by conflicting JumpList of nested try/finally...

CVE-2021-337979.8

Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floa...