In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file.
https://security.gentoo.org/glsa/201811-15
https://bugs.ghostscript.com/show_bug.cgi?id=698884