Fedora: Critical Fix for Uncontrolled Recursion in mupdf CVE-2025-46206
fedora
August 15, 2025
fix CVE-2025-46206 (rhbz#2386395)
Summary
MuPDF is a lightweight PDF viewer and toolkit written in portable C.
The renderer in MuPDF is tailored for high quality anti-aliased
graphics. MuPDF renders text with metrics and spacing accurate to
within fractions of a pixel for the highest fidelity in reproducing
the look of a printed page on screen.
MuPDF has a small footprint. A binary that includes the standard
Roman fonts is only one megabyte. A build with full CJK support
(including an Asian font) is approximately seven megabytes.
MuPDF has support for all non-interactive PDF 1.7 features, and the
toolkit provides a simple API for accessing the internal structures of
the PDF document. Example code for navigating interactive links and
bookmarks, encrypting PDF files, extracting fonts, images, and
searchable text, and rendering pages to image files is provided.
Update Information:
fix CVE-2025-46206 (rhbz#2386395)
Topics Covered
Change Log
* Wed Aug 6 2025 Michael J Gruber
References
[ 1 ] Bug #2386395 - CVE-2025-46206 mupdf: Mupdf uncontrolled recursion [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2386395
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-9a383e8701' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: mupdf
Product: Fedora 41
Version: 1.25.4
Release: 2.fc41
URL: http://mupdf.com/
Summary: A lightweight PDF viewer and toolkit
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!