Lucene search
K

28 matches found

Rosalinux
Rosalinux
added 2024/06/03 8:20 a.m.23 views

Advisory ROSA-SA-2024-2428

software: djvulibre 3.5.28 WASP: ROSA-CHROME packageevrstring: djvulibre-3.5.28-4 CVE-ID: CVE-2021-3500 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A flaw was discovered in djvulibre. A stack overflow in DJVU::DjVuDocument::getdjvufile via a created djvu file may cause the application to crash and...

7.8CVSS7.5AI score0.00944EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.20 views

Amazon Linux 2 : djvulibre (ALASMATE-DESKTOP1.X-2023-002)

The version of djvulibre installed on the remote host is prior to 3.5.27-28. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2MATE-DESKTOP1.X-2023-002 advisory. A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds write in function DJVU::filterbv via...

7.8CVSS7.5AI score0.01001EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/12/29 12:0 a.m.16 views

Debian: Security Advisory (DSA-5032-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.03667EPSS
Exploits5References4
Debian
Debian
added 2021/12/28 2:36 p.m.131 views

[SECURITY] [DSA 5032-1] djvulibre security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5032-1 [email protected] https://www.debian.org/security/ Florian Weimer December 28, 2021 https://www.debian.org/security/faq -...

7.8CVSS8.3AI score0.03667EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2021/12/28 12:0 a.m.22 views

Debian DSA-5032-1 : djvulibre - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5032 advisory. Several vulnerabilities were discovered in djvulibre, a library and set of tools to handle documents in the DjVu format. An attacker could crash document...

7.8CVSS6.8AI score0.03667EPSS
Exploits5References27
Tenable Nessus
Tenable Nessus
added 2021/07/16 12:0 a.m.27 views

openSUSE 15 Security Update : djvulibre (openSUSE-SU-2021:1948-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1948-1 advisory. - A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file may lead to...

7.8CVSS7.2AI score0.00944EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.21 views

openSUSE: Security Advisory for djvulibre (openSUSE-SU-2021:1948-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References2
OSV
OSV
added 2021/07/11 6:26 a.m.2 views

OPENSUSE-SU-2021:1948-1 Security update for djvulibre

This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/06/28 12:0 a.m.29 views

openSUSE 15 Security Update : djvulibre (openSUSE-SU-2021:0877-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:0877-1 advisory. - A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file may lead to...

7.8CVSS7.2AI score0.00944EPSS
Exploits0References4
CVE
CVE
added 2021/06/24 6:2 p.m.242 views

CVE-2021-3500

CVE-2021-3500 affects djvulibre up to version 3.5.28. A stack overflow in function DJVU::DjVuDocument::get_djvu_file() triggered by a crafted DjVu file may crash the application and, as described in connected advisories, could lead to further consequences including possible arbitrary code executi...

7.8CVSS7.4AI score0.00944EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2021/06/17 12:0 a.m.14 views

openSUSE: Security Advisory for djvulibre (openSUSE-SU-2021:0877-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References2
OSV
OSV
added 2021/06/16 1:54 p.m.5 views

OPENSUSE-SU-2021:0877-1 Security update for djvulibre

This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253 This update was imported from the SUSE:SLE-15-SP2:Update update project...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2021/06/16 12:0 a.m.26 views

Security update for djvulibre (important)

openSUSE Security Update: Security update for djvulibre Announcement ID: openSUSE-SU-2021:0877-1 Rating: important References: 1186253 Cross-References: CVE-2021-3500 CVSS scores: CVE-2021-3500 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 An update...

7.5CVSS7.7AI score0.00944EPSS
Exploits0References1
Mageia
Mageia
added 2021/06/13 9:32 p.m.33 views

Updated djvulibre packages fix security vulnerabilities

Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file. CVE-2021-3500. Out of bounds write in function DJVU::filterbv via crafted djvu file. CVE-2021-32490. Integer overflow in function render in tools/ddjvu via crafted djvu file. CVE-2021-32491 Out of bounds read in...

7.8CVSS3AI score0.01001EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/06/12 12:0 a.m.62 views

SUSE SLED15 / SLES15 Security Update : djvulibre (SUSE-SU-2021:1948-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:1948-1 advisory. - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253 Tenable has extracted the preceding...

7.8CVSS7.2AI score0.00944EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/11 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2021:1948-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00944EPSS
Exploits0References2
OSV
OSV
added 2021/06/10 10:32 a.m.5 views

SUSE-SU-2021:1948-1 Security update for djvulibre

This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.21 views

SUSE SLES11 Security Update : djvulibre (SUSE-SU-2021:14738-1)

The remote SUSE Linux SLES11 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2021:14738-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C...

7.8CVSS7.3AI score0.00944EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2021:14738-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00944EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2021:1813-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00944EPSS
Exploits0References4
Rows per page
Query Builder