Описание
Security update for djvulibre
This update for djvulibre fixes the following issues:
- CVE-2021-3630: out-of-bounds write in DJVU:DjVuTXT:decode() in DjVuText.cpp (bsc#1187869)
Список пакетов
HPE Helion OpenStack 8
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP2-BCL
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP3-BCL
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP3-LTSS
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP4-LTSS
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP5
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Software Development Kit 12 SP5
libdjvulibre-devel-3.5.25.3-5.19.2
SUSE OpenStack Cloud 8
libdjvulibre21-3.5.25.3-5.19.2
SUSE OpenStack Cloud 9
libdjvulibre21-3.5.25.3-5.19.2
SUSE OpenStack Cloud Crowbar 8
libdjvulibre21-3.5.25.3-5.19.2
SUSE OpenStack Cloud Crowbar 9
libdjvulibre21-3.5.25.3-5.19.2
Ссылки
- Link for SUSE-SU-2021:2621-1
- E-Mail link for SUSE-SU-2021:2621-1
- SUSE Security Ratings
- SUSE Bug 1187869
- SUSE CVE CVE-2021-3630 page
Описание
An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. This flaw affects DjVuLibre versions prior to 3.5.28.
Затронутые продукты
HPE Helion OpenStack 8:libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP2-BCL:libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP3-BCL:libdjvulibre21-3.5.25.3-5.19.2
SUSE Linux Enterprise Server 12 SP3-LTSS:libdjvulibre21-3.5.25.3-5.19.2
Ссылки
- CVE-2021-3630
- SUSE Bug 1187869