11 matches found
EUVD-2019-6212
Malware in sbrugna...
Unity Linux 20.1070e Security Update: djvulibre (UTSA-2025-680671)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680671 advisory. DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of- bounds read by crafting a corrupted JB2 image file that is...
Updated djvulibre packages fix security vulnerabilities
The updated packages fix security vulnerabilities: In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...
openSUSE Security Update : djvulibre (openSUSE-2019-2217)
This update for djvulibre fixes the following issues : Security issues fixed : - CVE-2019-15142: Fixed heap-based buffer over-read bsc1146702. - CVE-2019-15143: Fixed resource exhaustion caused by corrupted image files bsc1146569. - CVE-2019-15144: Fixed denial-of-service caused by crafted PBM...
DEBIAN-CVE-2019-15145
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...
CVE-2019-15145
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...
CVE-2019-15145
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...
UBUNTU-CVE-2019-15145
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...
CVE-2019-15145
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...
CVE-2019-15145
DjVuLibre 3.5.27 is vulnerable to a denial-of-service via an out-of-bounds read when processing a crafted JB2 image. The root cause is a missing zero-byte check in libdjvu/GBitmap.h, affecting JB2Dict::JB2Codec::get_direct_context in libdjvu/JB2Image.h. Exploitation requires a crafted JB2 image a...
CVE-2019-15145
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...