CVE-2014-2013

Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and earlier allows remote attackers to execute arbitrary code via a large number of entries in the ContextColor value of the Fill attribute in a Path element.

Date published : 2014-03-03

http://www.securityfocus.com/bid/65036

http://bugs.ghostscript.com/show_bug.cgi?id=694957