Source: djvulibre
Version: 3.5.27.1-13
Severity: normal
Tags: security upstream
Forwarded: https://sourceforge.net/p/djvu/bugs/309/
Control: found -1 3.5.27.1-10
Control: found -1 3.5.27.1-7

Hi,

The following vulnerability was published for djvulibre.

CVE-2019-18804[0]:
| DjVuLibre 3.5.27 has a NULL pointer dereference in the function
| DJVU::filter_fv at IW44EncodeCodec.cpp.


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2019-18804
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18804
[1] https://sourceforge.net/p/djvu/bugs/309/
[2] 
https://sourceforge.net/p/djvu/djvulibre-git/ci/c8bec6549c10ffaa2f2fbad8bbc629efdf0dd125/

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Reply via email to