Advisories » MGASA-2024-0183

Updated djvulibre packages fix security vulnerabilities

Publication date: 21 May 2024
Modification date: 21 May 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2021-46310 , CVE-2021-46312

Description

An issue was discovered IW44Image.cpp in djvulibre 3.5.28 in allows
attackers to cause a denial of service via divide by zero.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33221
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4APFAWR7QE27GXQMRKR6XKNZWWUJ5YMH/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46310
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46312

SRPMS

9/core

• djvulibre-3.5.28-5.1.mga9