djvulibre-3.5.28-6.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:13178-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z djvulibre-3.5.28-6.1 on GA media These are all security issues fixed in the djvulibre-3.5.28-6.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-13178 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2021-46310/ SUSE CVE CVE-2021-46310 page https://www.suse.com/security/cve/CVE-2021-46312/ SUSE CVE CVE-2021-46312 page openSUSE Tumbleweed djvulibre-3.5.28-6.1 djvulibre-doc-3.5.28-6.1 libdjvulibre-devel-3.5.28-6.1 libdjvulibre21-3.5.28-6.1 djvulibre-3.5.28-6.1 as a component of openSUSE Tumbleweed djvulibre-doc-3.5.28-6.1 as a component of openSUSE Tumbleweed libdjvulibre-devel-3.5.28-6.1 as a component of openSUSE Tumbleweed libdjvulibre21-3.5.28-6.1 as a component of openSUSE Tumbleweed An issue was discovered IW44Image.cpp in djvulibre 3.5.28 in allows attackers to cause a denial of service via divide by zero. CVE-2021-46310 openSUSE Tumbleweed:djvulibre-3.5.28-6.1 openSUSE Tumbleweed:djvulibre-doc-3.5.28-6.1 openSUSE Tumbleweed:libdjvulibre-devel-3.5.28-6.1 openSUSE Tumbleweed:libdjvulibre21-3.5.28-6.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-46310.html CVE-2021-46310 https://bugzilla.suse.com/1214670 SUSE Bug 1214670 An issue was discovered IW44EncodeCodec.cpp in djvulibre 3.5.28 in allows attackers to cause a denial of service via divide by zero. CVE-2021-46312 openSUSE Tumbleweed:djvulibre-3.5.28-6.1 openSUSE Tumbleweed:djvulibre-doc-3.5.28-6.1 openSUSE Tumbleweed:libdjvulibre-devel-3.5.28-6.1 openSUSE Tumbleweed:libdjvulibre21-3.5.28-6.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-46312.html CVE-2021-46312 https://bugzilla.suse.com/1214672 SUSE Bug 1214672