CVE-2021-32492 - log back

CVE-2021-32492 edited at 11 May 2021 10:18:46
References
https://bugzilla.redhat.com/show_bug.cgi?id=1943686
https://bugzilla.redhat.com/show_bug.cgi?id=1943410
https://bugzilla.redhat.com/attachment.cgi?id=1770220&action=diff
+ https://src.fedoraproject.org/rpms/djvulibre/blob/rawhide/f/djvulibre-3.5.27-check-input-pool.patch
CVE-2021-32492 edited at 11 May 2021 09:52:27
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A security issue was found in djvulibre. An out of bounds read in the function DJVU::DataPool::has_data() may lead to an application crash and other consequences via a crafted djvu file.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1943686
+ https://bugzilla.redhat.com/show_bug.cgi?id=1943410
+ https://bugzilla.redhat.com/attachment.cgi?id=1770220&action=diff
CVE-2021-32492 created at 11 May 2021 09:44:15
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes