Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Ubuntu 16.04 ESM USN-4957-2 Moderate: DjVuLibre Memory Problems

ubuntu
Calendar Grey May 18, 2021
Dist Ubuntu Esm H88
Enhance your Ubuntu 16.04 ESM for DjVuLibre to address memory vulnerabilities and safeguard against possible external threats.
Several security issues were fixed in DjVuLibre.

Summary

Several security issues were fixed in DjVuLibre.

Software Description:

- djvulibre: DjVu image format library and tools

Details:

USN-4957-1 fixed several vulnerabilities in DjVuLibre. This update provides

the corresponding update for Ubuntu 16.04 ESM.

Original advisory details:

It was discovered that DjVuLibre incorrectly handled certain memory

operations. If a user or automated system were tricked into processing a

specially crafted DjVu file, a remote attacker could cause applications

to hang or crash, resulting in a denial of service, or possibly execute

arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
  libdjvulibre21                  3.5.27.1-5ubuntu0.1+esm1

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4957-2

https://ubuntu.com/security/notices/USN-4957-1

CVE-2021-32490, CVE-2021-32491, CVE-2021-32492, CVE-2021-32493,

CVE-2021-3500

May 18, 2021

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here