Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-2702-1:441AD
HistoryJul 03, 2021 - 8:38 p.m.

[SECURITY] [DLA 2702-1] djvulibre security update

2021-07-0320:38:19
lists.debian.org
82
djvulibre
out-of-bounds write
vulnerability
fix
debian 9
security update

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

44.7%

JSON

Debian LTS Advisory DLA-2702-1 [email protected]
https://www.debian.org/lts/security/ Utkarsh Gupta
July 03, 2021 https://wiki.debian.org/LTS

Package : djvulibre
Version : 3.5.27.1-7+deb9u2
CVE ID : CVE-2021-3630

An out-of-bounds write vulnerability was found in DjVuLibre in
DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file
which may lead to crash and segmentation fault.

For Debian 9 stretch, this problem has been fixed in version
3.5.27.1-7+deb9u2.

We recommend that you upgrade your djvulibre packages.

For the detailed security status of djvulibre please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/djvulibre

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian9alldjvulibre< 3.5.27.1-7+deb9u2djvulibre_3.5.27.1-7+deb9u2_all.deb

Related

debiancve 1
osv 3
nessus 11
alpinelinux 1
suse 2
openvas 14
cve 1
prion 1
fedora 4
cloudfoundry 1
cvelist 1
ubuntucve 1
nvd 1
veracode 1
ubuntu 1
debian 1
debiancve
debiancve
CVE-2021-3630
2021-06-30 14:15:08
osv
osv
djvulibre - security update
2021-07-03 00:00:00
djvulibre vulnerability
2021-07-05 13:12:48
djvulibre - security update
2021-12-28 00:00:00
nessus
nessus
SUSE SLES11 Security Update : djvulibre (SUSE-SU-2021:14773-1)
2021-08-05 00:00:00
Amazon Linux 2 : djvulibre (ALASMATE-DESKTOP1.X-2023-001)
2023-09-27 00:00:00
openSUSE 15 Security Update : djvulibre (openSUSE-SU-2021:1112-1)
2021-08-11 00:00:00
alpinelinux
alpinelinux
CVE-2021-3630
2021-06-30 14:15:08
suse
suse
Security update for djvulibre (important)
2021-08-10 00:00:00
Security update for djvulibre (important)
2021-08-05 00:00:00
openvas
openvas
Fedora: Security Advisory for mingw-djvulibre (FEDORA-2021-d19172badb)
2021-07-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2619-1)
2021-08-05 00:00:00
openSUSE: Security Advisory for djvulibre (openSUSE-SU-2021:1112-1)
2021-08-11 00:00:00
cve
cve
CVE-2021-3630
2021-06-30 14:15:08
prion
prion
Cross site scripting
2021-06-30 14:15:00
fedora
fedora
[SECURITY] Fedora 34 Update: djvulibre-3.5.27-30.fc34
2021-07-11 01:05:09
[SECURITY] Fedora 33 Update: mingw-djvulibre-3.5.28-1.fc33
2021-07-15 01:06:28
[SECURITY] Fedora 33 Update: djvulibre-3.5.27-28.fc33
2021-07-11 01:03:44
cloudfoundry
cloudfoundry
USN-5005-1: DjVuLibre vulnerability | Cloud Foundry
2021-09-07 00:00:00
cvelist
cvelist
CVE-2021-3630
2021-06-30 13:27:28
ubuntucve
ubuntucve
CVE-2021-3630
2021-06-30 00:00:00
nvd
nvd
CVE-2021-3630
2021-06-30 14:15:08
veracode
veracode
Denial Of Service(DoS)
2021-08-06 19:31:32
ubuntu
ubuntu
DjVuLibre vulnerability
2021-07-05 00:00:00
debian
debian
[SECURITY] [DSA 5032-1] djvulibre security update
2021-12-28 14:36:14

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

44.7%

JSON
Related for DEBIAN:DLA-2702-1:441AD
debiancve1osv3nessus11alpinelinux1suse2openvas14cve1prion1fedora4cloudfoundry1cvelist1ubuntucve1nvd1veracode1ubuntu1debian1