Headline
CVE-2021-3630: 1977427 – (CVE-2021-3630) CVE-2021-3630 djvulibre: out-of-bounds write in DJVU::DjVuTXT::decode() in DjVuText.cpp
An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. This flaw affects DjVuLibre versions prior to 3.5.28.
Comment 1 Guilherme de Almeida Suckevicz 2021-06-29 17:56:29 UTC
Created djvulibre tracking bugs for this issue:
Affects: epel-7 [bug 1977430] Affects: fedora-all [bug 1977428]
Created mingw-djvulibre tracking bugs for this issue:
Affects: fedora-all [bug 1977429]
Comment 2 Product Security DevOps Team 2021-06-29 22:40:34 UTC
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.