The vulnerability of the DJVU reading component in the viewing, creation, and editing of DjVU files by DjVuLibre allows a hacker to cause a service failure by exploiting the issue related to buffer overflows.

The vulnerability of the DJVU reading component in the viewing, creation, and editing of DjVu files in DjVuLibre involves reading data beyond the allowed boundaries of the buffer. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2019-15142

In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...

CVE-2019-15142

In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...

Heap overflow

In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...

CVE-2019-15142

CVE-2019-15142 affects DjVuLibre 3.5.27 in the DJVU reader component. The vulnerability arises in DjVmDir.cpp (and related GString handling) where the code reads a DJVU file into a GTArray and then uses a UTF-8 string path, leading to a heap-based out-of-bounds read and a denial-of-service crash ...

CVE-2019-15142

In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...