CVE-2021-32493 - log back

CVE-2021-32493 edited at 11 May 2021 10:18:57
References
https://bugzilla.redhat.com/show_bug.cgi?id=1943690
https://bugzilla.redhat.com/show_bug.cgi?id=1943424
https://bugzilla.redhat.com/attachment.cgi?id=1774554&action=diff
+ https://src.fedoraproject.org/rpms/djvulibre/blob/rawhide/f/djvulibre-3.5.27-unsigned-short-overflow.patch
CVE-2021-32493 edited at 11 May 2021 09:53:55
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A security issue was found in djvulibre. A heap buffer overflow in the function DJVU::GBitmap::decode() may lead to an application crash and other consequences via a crafted djvu file.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1943690
+ https://bugzilla.redhat.com/show_bug.cgi?id=1943424
+ https://bugzilla.redhat.com/attachment.cgi?id=1774554&action=diff
CVE-2021-32493 created at 11 May 2021 09:44:15
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes