Oval Definition:oval:org.opensuse.security:def:99260
Revision Date:2021-05-19Version:1
Title:Security update for djvulibre (Important)
Description:

This update for djvulibre fixes the following issues:

Security issues fixed:

- CVE-2021-32490 [bsc#1185895], Out of bounds write in function DJVU:filter_bv() via crafted djvu file - CVE-2021-32491 [bsc#1185900], Integer overflow in function render() in tools/ddjvu via crafted djvu file - CVE-2021-32492 [bsc#1185904], Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file - CVE-2021-32493 [bsc#1185905], Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file
Family:unixClass:patch
Status:Reference(s):1185895
1185900
1185904
1185905
CVE-2021-32490
CVE-2021-32491
CVE-2021-32492
CVE-2021-32493
SUSE-SU-2021:1649-1
Platform(s):SUSE Linux Enterprise Server 15 SP1-BCL
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-BCL is installed
  • AND Package Information
  • libdjvulibre-devel-3.5.27-3.11.1 is installed
  • OR libdjvulibre21-3.5.27-3.11.1 is installed
    • BACK