[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1985-1] djvulibre security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : djvulibre
Version        : 3.5.25.4-4+deb8u2
CVE ID         : CVE-2019-18804

It was discovered that there was a NULL pointer dereference issue
in the IW44 encoder/decoder within DjVu, a set of compression
technologies for high-resolution ssues.

For Debian 8 "Jessie", this issue has been fixed in djvulibre version
3.5.25.4-4+deb8u2.

We recommend that you upgrade your djvulibre packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=1aKl
-----END PGP SIGNATURE-----
Reply to: