CNNVD-202508-242 Information
CNNVD ID
CNNVD-202508-242
Related CVE
- CNNVD Published: 2025-08-04
Description (Chinese)
artifex mupdf是个人开发者的一款富文本编辑器。富文本编辑器不同于文本编辑器,程序员可到网上下载免费的富文本编辑器内嵌于自己的网站或程序里(当然付费的功能会更强大些),方便用户编辑文章或信息。 artifex mupdf 1.25.6版本和1.25.5版本存在安全漏洞,该漏洞源于处理特制PDF文件时mutool clean工具出现无限递归,可能导致拒绝服务。
Description (English)
Artifex mupdf is a rich text editor for personal developers. A rich text editor is different from a text editor, and a programmer can go to a free-of-charge text editor on the Internet and be embedded in his or her website or programme (of course, the pay-for-the-money feature will be stronger) to facilitate the user ’ s editing of articles or information. There is a security loophole in versions 1.25,6 and 1.25,5, which stems from the endless regression of the mutool clean tool when processing a special PDF file, which may lead to the denial of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-08-04
Last Modified
2026-02-24
References
http://artifex.com http://mupdf.com https://github.com/Landw-hub/CVE-2025-46206 https://bugs.ghostscript.com/show_bug.cgi?id=708521 https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=0ec7e4d2201bb6df217e01c17396d36297abf9ac https://vigilance.fr/vulnerability/Artifex-mupdf-overload-via-Mutool-Clean-Utility-48005
Share on: