[ubuntu/bionic-security] djvulibre 3.5.27.1-8ubuntu0.3 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon May 17 17:08:05 UTC 2021
djvulibre (3.5.27.1-8ubuntu0.3) bionic-security; urgency=medium
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2021-3500.patch: prevent recursion in
libdjvu/DjVuPort.cpp, libdjvu/DjVuPort.h.
- CVE-2021-3500
* SECURITY UPDATE: Out of bounds write
- debian/patches/CVE-2021-32490.patch: add checks to
libdjvu/IW44Image.cpp.
- CVE-2021-32490
* SECURITY UPDATE: Integer overflow
- debian/patches/CVE-2021-32491.patch: check for overflow in
tools/ddjvu.cpp.
- CVE-2021-32491
* SECURITY UPDATE: Out of bounds read
- debian/patches/CVE-2021-32492.patch: check pool in
libdjvu/DataPool.cpp.
- CVE-2021-32492
* SECURITY UPDATE: Heap buffer overflow
- debian/patches/CVE-2021-32493.patch: check row size in
libdjvu/GBitmap.cpp.
- CVE-2021-32493
* debian/patches: rename debian-changes to changes.patch to simplify
maintenance.
djvulibre (3.5.27.1-8ubuntu0.2) bionic; urgency=medium
* debian/patches/git_cpu_fix.patch:
- don't segfault when trying to open document on an atom based config
(lp: #1846785)
Date: 2021-05-17 13:52:10.164913+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/djvulibre/3.5.27.1-8ubuntu0.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list