Описание
Security update for djvulibre
This update for djvulibre fixes the following issues:
- CVE-2021-3630: out-of-bounds write in DJVU:DjVuTXT:decode() in DjVuText.cpp (bsc#1187869)
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
libdjvulibre-devel-3.5.27-11.11.1
libdjvulibre21-3.5.27-11.11.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
libdjvulibre-devel-3.5.27-11.11.1
libdjvulibre21-3.5.27-11.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP2
djvulibre-3.5.27-11.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
djvulibre-3.5.27-11.11.1
Ссылки
- Link for SUSE-SU-2021:2619-1
- E-Mail link for SUSE-SU-2021:2619-1
- SUSE Security Ratings
- SUSE Bug 1187869
- SUSE CVE CVE-2021-3630 page
Описание
An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. This flaw affects DjVuLibre versions prior to 3.5.28.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:libdjvulibre-devel-3.5.27-11.11.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:libdjvulibre21-3.5.27-11.11.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libdjvulibre-devel-3.5.27-11.11.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libdjvulibre21-3.5.27-11.11.1
Ссылки
- CVE-2021-3630
- SUSE Bug 1187869