Information on source package djvulibre

Available versions

ReleaseVersion
bullseye3.5.28-2
bookworm3.5.28-2
trixie3.5.28-2
sid3.5.28-2

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2021-46312vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered IW44EncodeCodec.cpp in djvulibre 3.5.28 in all ...
CVE-2021-46310vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered IW44Image.cpp in djvulibre 3.5.28 in allows at ...

Resolved issues

BugDescription
TEMP-0775193-7F000Edjvudigital: insecure use of /tmp
CVE-2021-32493A flaw was found in djvulibre-3.5.28 and earlier. A heap buffer overfl ...
CVE-2021-32492A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds rea ...
CVE-2021-32491A flaw was found in djvulibre-3.5.28 and earlier. An integer overflow ...
CVE-2021-32490A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds wri ...
CVE-2021-3630An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::D ...
CVE-2021-3500A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in ...
CVE-2019-18804DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU:: ...
CVE-2019-15145DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack ...
CVE-2019-15144In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYP ...
CVE-2019-15143In DjVuLibre 3.5.27, the bitmap reader component allows attackers to c ...
CVE-2019-15142In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows a ...
CVE-2012-6535DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDr ...

Security announcements

DSA / DLADescription
DSA-5032-1djvulibre - security update
DLA-2702-1djvulibre - security update
DLA-2667-1djvulibre - security update
DLA-1985-1djvulibre - security update
DLA-1902-1djvulibre - security update
DSA-2844-1djvulibre - arbitrary code execution

Search for package or bug name: Reporting problems