CVE-2025-53367 log
Source |
|
Severity | High |
Remote | No |
Type | Arbitrary code execution |
Description | A vulnerability was found in djvulibre. The MMRDecoder::scanruns method is affected by an OOB-write vulnerability, because it does not check that the xr pointer stays within the bounds of the allocated buffer. This can lead to writes beyond the allocated memory, resulting in a heap corruption condition. An out-of-bounds read with pr is also possible for the same reason. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-2907 | djvulibre | 3.5.28-6 | High | Vulnerable |