Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 43 mupdf 1.27.1 Medium Denial of Service Fix FEDORA-2026-c06fd97a53

fedora
Calendar Grey February 23, 2026
Dist Fedora Esm H88
MuPDF version 1.27.1 includes essential updates to fix DoS issues in Fedora 43, enhancing stability and security.
mupdf 1.27.1 and dependencies

Summary

MuPDF is a lightweight PDF viewer and toolkit written in portable C.

The renderer in MuPDF is tailored for high quality anti-aliased

graphics. MuPDF renders text with metrics and spacing accurate to

within fractions of a pixel for the highest fidelity in reproducing

the look of a printed page on screen.

MuPDF has a small footprint. A binary that includes the standard

Roman fonts is only one megabyte. A build with full CJK support

(including an Asian font) is approximately seven megabytes.

MuPDF has support for all non-interactive PDF 1.7 features, and the

toolkit provides a simple API for accessing the internal structures of

the PDF document. Example code for navigating interactive links and

bookmarks, encrypting PDF files, extracting fonts, images, and

searchable text, and rendering pages to image files is provided.

Update Information:

mupdf 1.27.1 and dependencies

Topics%20covered

Topics Covered

security advisory denial of service fedora medium mupdf

Change Log

* Thu Feb 12 2026 Michael J Gruber - 1.27.1-4 - add versioned requires to make rpminspect happy * Tue Feb 10 2026 Michael J Gruber - 1.27.1-3 - ship pkgconfig file (rhbz#2430595) * Tue Feb 10 2026 Michael J Gruber - 1.27.1-2 - fix CVE-2026-25556 * Thu Feb 5 2026 Michael J Gruber - 1.27.1-1 - rebase to 1.27.1 (rhbz#2412002) - changes to mutool run to bring it into sync with WASM library - improvements for text extraction - improved HTML+CSS support - mutool grep: new tool to search for text in documents - various bugfixes * Fri Jan 16 2026 Fedora Release Engineering - 1.26.9-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Tue Oct 28 2025 Michael J Gruber - 1.26.9-4 - rebuild for swig 4.4.0

References


[ 1 ] Bug #2437972 - CVE-2026-25556 mupdf: MuPDF: Denial of Service via crafted input during barcode decoding [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2437972

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-c06fd97a53' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
medium
Lowest
Low
Medium
High
Critical

Name: mupdf
Product: Fedora 43
Version: 1.27.1
Release: 4.fc43
URL: http://mupdf.com/
Summary: A lightweight PDF viewer and toolkit

Topics%20covered

Topics Covered

security advisory denial of service fedora medium mupdf

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here