Oval Definition:oval:org.opensuse.security:def:111394
Revision Date:2021-05-22Version:1
Title:Security update for djvulibre (Important)
Description:

This update for djvulibre fixes the following issues:

- CVE-2021-32490 [bsc#1185895]: Out of bounds write in function DJVU:filter_bv() via crafted djvu file - CVE-2021-32491 [bsc#1185900]: Integer overflow in function render() in tools/ddjvu via crafted djvu file - CVE-2021-32492 [bsc#1185904]: Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file - CVE-2021-32493 [bsc#1185905]: Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file

This update was imported from the SUSE:SLE-15-SP2:Update update project.
Family:unixClass:patch
Status:Reference(s):1185895
1185900
1185904
1185905
CVE-2021-32490
CVE-2021-32491
CVE-2021-32492
CVE-2021-32493
openSUSE-SU-2021:0759-1
Platform(s):openSUSE Leap 15.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • djvulibre-3.5.27-lp152.7.3.1 is installed
  • OR djvulibre-doc-3.5.27-lp152.7.3.1 is installed
  • OR libdjvulibre-devel-3.5.27-lp152.7.3.1 is installed
  • OR libdjvulibre21-3.5.27-lp152.7.3.1 is installed
    • BACK