5 matches found
Astra Linux – Vulnerability in DjVuLibre
A flaw was discovered in djvulibre-3.5.28 and earlier. A stack overflow occurred in the function DJVU::DjVuDocument::getdjvufile, due to a malicious djvu file, which could lead to the application crashing and other related issues...
CVE-2025-53367: An exploitable out-of-bounds write in DjVuLibre
DjVuLibre version 3.5.29 was released today. It fixes CVE-2025-53367 GHSL-2025-055, an out-of-bounds OOB write in the MMRDecoder::scanruns method. The vulnerability could be exploited to gain code execution on a Linux Desktop system when the user tries to open a crafted document. DjVu is a docume...
SUSE CVE-2021-3500
A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file may lead to application crash and other consequences...
OESA-2021-1255 djvulibre security update
DjVu is a set of compression technologies, a file format, and a software platform for the deliveryover the Web of digital documents, scanned documents, and high resolution images.DjVu documents download and display extremely quickly, and look exactly the same on all platforms with no compatibilit...
The vulnerability of the function DJVU::DjVuDocument::get_djvu_file() in the DjVuLibre library and utilities allows a perpetrator to execute arbitrary code.
The vulnerability of the function DJVU::DjVuDocument::getdjvufile in the DjVuLibre library and utilities is caused by buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...