Home

Description

An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to cause a Denial of Service (DoS) via a crafted input.

PUBLISHED Reserved 2026-04-06 | Published 2026-07-09 | Updated 2026-07-09 | Assigner mitre

References

artifex.com

github.com/ArtifexSoftware/jbig2dec

gist.github.com/dkjsone/c237b83ffa9ebd7028b5db7f410fcf78

cve.org (CVE-2026-38076)

nvd.nist.gov (CVE-2026-38076)

Download JSON