An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to cause a Denial of Service (DoS) via a crafted input.
Metrics
Affected Vendors & Products
References
History
Sun, 12 Jul 2026 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-680 |
Fri, 10 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
ssvc
|
Fri, 10 Jul 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-680 |
Fri, 10 Jul 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | jbig2dec: jbig2dec: Denial of Service via crafted input | |
| Weaknesses | CWE-190 | |
| References |
| |
| Metrics |
threat_severity
|
cvssV3_1
|
Fri, 10 Jul 2026 09:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Artifex
Artifex jbig2dec |
|
| Vendors & Products |
Artifex
Artifex jbig2dec |
Thu, 09 Jul 2026 22:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to cause a Denial of Service (DoS) via a crafted input. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published: 2026-07-09T00:00:00.000Z
Updated: 2026-07-10T18:14:33.083Z
Reserved: 2026-04-06T00:00:00.000Z
Link: CVE-2026-38076
Updated: 2026-07-10T18:14:28.870Z
No data.