Information on source package djvulibre

Available versions

ReleaseVersion
jessie3.5.25.4-4
jessie (security)3.5.25.4-4+deb8u2
stretch3.5.27.1-7
buster3.5.27.1-10
bullseye3.5.27.1-13
sid3.5.27.1-13

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-18804fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableDjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU:: ...
CVE-2019-15145fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedDjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack ...
CVE-2019-15144fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate< ...
CVE-2019-15143fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn DjVuLibre 3.5.27, the bitmap reader component allows attackers to c ...
CVE-2019-15142fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows a ...

Open unimportant issues

BugjessiestretchbusterbullseyesidDescription
TEMP-0775193-7F000Evulnerablefixedfixedfixedfixeddjvudigital: insecure use of /tmp

Resolved issues

BugDescription
CVE-2012-6535DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDr ...

Security announcements

DSA / DLADescription
DLA-1985-1djvulibre - security update
DLA-1902-1djvulibre - security update
DSA-2844-1djvulibre - arbitrary code execution

Search for package or bug name: Reporting problems