Vulnerabilities > CVE-2021-3630 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
djvulibre-project
debian
fedoraproject
CWE-787
NVD
Published: 2021-06-30
Updated: 2023-11-07

Summary

An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. This flaw affects DjVuLibre versions prior to 3.5.28.

Vulnerable Configurations

Part Description Count
Application
Djvulibre_Project
1
OS
Debian
3
OS
Fedoraproject
2

Common Weakness Enumeration (CWE)

References