5 matches found
Astra Linux – Vulnerability in DjVuLibre
DjVuLibre is a GPL implementation of DjVu, a web-centric format for distributing documents and images. Prior to version 3.5.29, the MMRDecoder::scanruns method was vulnerable to an OOB-write vulnerability, as it did not check that the xr pointer remained within the bounds of the allocated buffer...
SUSE CVE-2025-53367
DjVuLibre is a GPL implementation of DjVu, a web-centric format for distributing documents and images. Prior to version 3.5.29, the MMRDecoder::scanruns method is affected by an OOB-write vulnerability, because it does not check that the xr pointer stays within the bounds of the allocated buffer...
CVE-2025-53367
DjVuLibre is a GPL implementation of DjVu, a web-centric format for distributing documents and images. Prior to version 3.5.29, the MMRDecoder::scanruns method is affected by an OOB-write vulnerability, because it does not check that the xr pointer stays within the bounds of the allocated buffer...
CVE-2025-53367
DjVuLibre (library for DjVu) is affected by CVE-2025-53367 in the MMRDecoder::scanruns path, prior to 3.5.29. The issue is an out-of-bounds write caused by not ensuring xr stays within the allocated buffer, leading to heap corruption. An out-of-bounds read (pr) is also possible for the same reaso...
CVE-2025-53367 DjVuLibre OOB-Write Vulnerability in MMRDecoder
DjVuLibre is a GPL implementation of DjVu, a web-centric format for distributing documents and images. Prior to version 3.5.29, the MMRDecoder::scanruns method is affected by an OOB-write vulnerability, because it does not check that the xr pointer stays within the bounds of the allocated buffer...