28 matches found
Advisory ROSA-SA-2024-2428
software: djvulibre 3.5.28 WASP: ROSA-CHROME packageevrstring: djvulibre-3.5.28-4 CVE-ID: CVE-2021-3500 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A flaw was discovered in djvulibre. A stack overflow in DJVU::DjVuDocument::getdjvufile via a created djvu file may cause the application to crash and...
Amazon Linux 2 : djvulibre (ALASMATE-DESKTOP1.X-2023-002)
The version of djvulibre installed on the remote host is prior to 3.5.27-28. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2MATE-DESKTOP1.X-2023-002 advisory. A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds write in function DJVU::filterbv via...
Debian: Security Advisory (DSA-5032-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5032-1] djvulibre security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5032-1 [email protected] https://www.debian.org/security/ Florian Weimer December 28, 2021 https://www.debian.org/security/faq -...
Debian DSA-5032-1 : djvulibre - security update
The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5032 advisory. Several vulnerabilities were discovered in djvulibre, a library and set of tools to handle documents in the DjVu format. An attacker could crash document...
openSUSE 15 Security Update : djvulibre (openSUSE-SU-2021:1948-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1948-1 advisory. - A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file may lead to...
openSUSE: Security Advisory for djvulibre (openSUSE-SU-2021:1948-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:1948-1 Security update for djvulibre
This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253...
openSUSE 15 Security Update : djvulibre (openSUSE-SU-2021:0877-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:0877-1 advisory. - A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file may lead to...
CVE-2021-3500
CVE-2021-3500 affects djvulibre up to version 3.5.28. A stack overflow in function DJVU::DjVuDocument::get_djvu_file() triggered by a crafted DjVu file may crash the application and, as described in connected advisories, could lead to further consequences including possible arbitrary code executi...
openSUSE: Security Advisory for djvulibre (openSUSE-SU-2021:0877-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:0877-1 Security update for djvulibre
This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253 This update was imported from the SUSE:SLE-15-SP2:Update update project...
Security update for djvulibre (important)
openSUSE Security Update: Security update for djvulibre Announcement ID: openSUSE-SU-2021:0877-1 Rating: important References: 1186253 Cross-References: CVE-2021-3500 CVSS scores: CVE-2021-3500 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 An update...
Updated djvulibre packages fix security vulnerabilities
Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file. CVE-2021-3500. Out of bounds write in function DJVU::filterbv via crafted djvu file. CVE-2021-32490. Integer overflow in function render in tools/ddjvu via crafted djvu file. CVE-2021-32491 Out of bounds read in...
SUSE SLED15 / SLES15 Security Update : djvulibre (SUSE-SU-2021:1948-1)
The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:1948-1 advisory. - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253 Tenable has extracted the preceding...
SUSE: Security Advisory (SUSE-SU-2021:1948-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:1948-1 Security update for djvulibre
This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:getdjvufile via crafted djvu file bsc1186253...
SUSE SLES11 Security Update : djvulibre (SUSE-SU-2021:14738-1)
The remote SUSE Linux SLES11 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2021:14738-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C...
SUSE: Security Advisory (SUSE-SU-2021:14738-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:1813-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...