Artifex MuPDF 1.16.0

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:artifex:mupdf:1.16.0:-:*:*:*:*:*:*

part: a version: 1.16.0 update: -

VendorArtifex (0075fabc-cec9-5063-a004-04a5c9db1a9b)
ProductMupdf (6f02f53c-b512-52b9-a348-7b443959b13c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:deb/debian/mupdf purl2cpe 2026-06-01 10:14:59.690415
pkg:deb/ubuntu/mupdf purl2cpe 2026-06-01 10:14:59.690417
pkg:github/artifexsoftware/mupdf purl2cpe 2026-06-01 10:14:59.690418
pkg:rpm/fedora/mupdf purl2cpe 2026-06-01 10:14:59.690419
pkg:rpm/opensuse/mupdf purl2cpe 2026-06-01 10:14:59.690421

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-21896 vulnerable 2026-06-08 05:22:31.103824 Details available
A Use After Free vulnerability in svg_dev_text_span_as_paths_defs function in source/fitz/svg-device.c in Artifex Software MuPDF 1.16.0 allows remote attackers to cause a denial of service via opening of a crafted PDF file.
Published: 2023-08-22T00:00:00.000Z
Updated: 2025-11-03T18:07:56.741Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.