CVE-2025-71382
MediumCVSS 6.5Exploitation Probability (EPSS)
Low risk23th percentile — higher than 23% of all known CVEs
Summary
A vulnerability in MuPDF before version 1.27.0-rc1 allows a remote attacker to cause a denial of service (DoS) by supplying a crafted EPUB file with deeply nested HTML elements and inline CSS styles. The issue stems from uncontrolled recursion in the value_from_inheritable_property() function in css-apply.c, which traverses the CSS property inheritance chain without a depth limit, exhausting the process stack and crashing any application using MuPDF for EPUB rendering.
Risk Assessment
The risk is the ability to remotely execute a DoS attack on any application using MuPDF to process EPUB files, potentially disrupting services or systems, especially in environments processing untrusted documents.
Recommendation
It is recommended to immediately update the MuPDF library to version 1.27.0-rc1 or later, which includes a fix for the uncontrolled recursion. If an update is not possible, implement validation of EPUB files before processing, rejecting documents with excessively nested HTML elements.
Original NVD description (English source)
MuPDF before 1.27.0-rc1 contains an uncontrolled recursion vulnerability in the EPUB CSS rendering engine that allows remote attackers to cause a denial of service by supplying a maliciously crafted EPUB file with deeply nested HTML elements and inline CSS styles. The function value_from_inheritable_property() in css-apply.c recurses through the CSS property inheritance chain without a depth limit, exhausting the process stack and causing a crash in any application using MuPDF for EPUB rendering.

