Alerts This Week
Warning Icon 1 1,146
Alerts This Week
Warning Icon 1 1,146

Mageia 9: djvulibre Important Out-of-Bounds Code Execution MGASA-2025-0209

mageia
Calendar Grey July 19, 2025
Dist Mageia Esm H88
Explore the essential djvulibre patch in Mageia, which mitigates potential code execution threats arising from specially designed documents.
An out-of-bounds write in the MMRDecoder::scanruns method was fixed

Summary

An out-of-bounds write in the MMRDecoder::scanruns method was fixed. The vulnerability could be exploited to gain code execution on a Linux Desktop system when the user tries to open a crafted document.

References

- https://bugs.mageia.org/show_bug.cgi?id=34423

- https://www.openwall.com/lists/oss-security/2025/07/03/1

- https://ubuntu.com/security/notices/USN-7631-1

- https://www.cve.org/CVERecord?id=CVE-2025-53367

Resolution

SRPMS

- 9/core/djvulibre-3.5.29-1.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 19 Jul 2025
URL: https://advisories.mageia.org/MGASA-2025-0209.html
Type: security
CVE: CVE-2025-53367

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here