What the vulnerability does

01Description

A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds write in function DJVU::filter_bv() via crafted djvu file may lead to application crash and other consequences.

Key dates

02Disclosure timeline

June 24, 2021 CVE published
August 3, 2024 Record updated