CVE-2021-3630
30.06.2021, 14:15
An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. This flaw affects DjVuLibre versions prior to 3.5.28.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| djvulibre_project | djvulibre | 𝑥 < 3.5.28 |
| debian | debian_linux | 9.0 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 11.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libdjvulibre-devel |
| ||||||||||||||||||||||||||||||||||||||||||||
| libdjvulibre21 |
|
Common Weakness Enumeration
References