Oval Definition:oval:org.opensuse.security:def:70221
Revision Date:2021-05-19Version:1
Title:Security update for djvulibre (Important)
Description:

This update for djvulibre fixes the following issues:

Security issues fixed:

- CVE-2021-32490 [bsc#1185895], Out of bounds write in function DJVU:filter_bv() via crafted djvu file - CVE-2021-32491 [bsc#1185900], Integer overflow in function render() in tools/ddjvu via crafted djvu file - CVE-2021-32492 [bsc#1185904], Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file - CVE-2021-32493 [bsc#1185905], Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file
Family:unixClass:patch
Status:Reference(s):1185895
1185900
1185904
1185905
CVE-2009-5031
CVE-2012-2751
CVE-2012-4528
CVE-2013-1915
CVE-2013-2765
CVE-2019-16239
CVE-2020-12105
CVE-2021-32490
CVE-2021-32491
CVE-2021-32492
CVE-2021-32493
SUSE-SU-2021:1649-1
Platform(s):SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND apache2-mod_security2-2.9.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libdjvulibre-devel-3.5.27-3.11.1 is installed
  • OR libdjvulibre21-3.5.27-3.11.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • openconnect-7.08-6.6 is installed
  • OR openconnect-devel-7.08-6.6 is installed
  • OR openconnect-lang-7.08-6.6 is installed
    • BACK