CVE-2019-15142
- EPSS 0.18%
- Veröffentlicht 18.08.2019 19:15:09
- Zuletzt bearbeitet 21.11.2024 04:28:08
In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service (application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read) by crafting a DJVU file.
CVE-2019-15143
- EPSS 0.07%
- Veröffentlicht 18.08.2019 19:15:09
- Zuletzt bearbeitet 21.11.2024 04:28:09
In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service error (resource exhaustion caused by a GBitmap::read_rle_raw infinite loop) by crafting a corrupted image file, related to libdjvu/DjVmDir.cpp and libdjvu/...
CVE-2019-15144
- EPSS 0.06%
- Veröffentlicht 18.08.2019 19:15:09
- Zuletzt bearbeitet 21.11.2024 04:28:09
In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers to cause a denial-of-service (application crash due to an Uncontrolled Recursion) by crafting a PBM image file that is mishandled in libdjvu/GContainer.h...
CVE-2012-6535
- EPSS 5.36%
- Veröffentlicht 02.12.2013 22:55:03
- Zuletzt bearbeitet 11.04.2025 00:51:21
DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted DjVu (aka .djv) file.