djvulibre 3.5.28-1ubuntu0.1 source package in Ubuntu

Changelog

djvulibre (3.5.28-1ubuntu0.1) hirsute-security; urgency=medium

  * SECURITY UPDATE: Stack overflow
    - debian/patches/CVE-2021-3500.patch: prevent recursion in
      libdjvu/DjVuPort.cpp, libdjvu/DjVuPort.h.
    - CVE-2021-3500
  * SECURITY UPDATE: Out of bounds write
    - debian/patches/CVE-2021-32490.patch: add checks to
      libdjvu/IW44Image.cpp.
    - CVE-2021-32490
  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2021-32491.patch: check for overflow in
      tools/ddjvu.cpp.
    - CVE-2021-32491
  * SECURITY UPDATE: Out of bounds read
    - debian/patches/CVE-2021-32492.patch: check pool in
      libdjvu/DataPool.cpp.
    - CVE-2021-32492
  * SECURITY UPDATE: Heap buffer overflow
    - debian/patches/CVE-2021-32493.patch: check row size in
      libdjvu/GBitmap.cpp.
    - CVE-2021-32493

 -- Marc Deslauriers <email address hidden>  Mon, 17 May 2021 09:08:32 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Hirsute
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Hirsute updates main graphics
Hirsute security main graphics

Downloads

File Size SHA-256 Checksum
djvulibre_3.5.28.orig.tar.xz 2.8 MiB 1223b7bf7c8dfe2e290882f3bfb88ba2468b30495a1bf8dfd54dc7e810987887
djvulibre_3.5.28-1ubuntu0.1.debian.tar.xz 16.6 KiB a763d8c4c88a190730e4bc9dc55e320201a51f5ccab48464e84cae9c6f2c10f2
djvulibre_3.5.28-1ubuntu0.1.dsc 2.4 KiB cdc4ba178f7e99a487b266b6683ba41242c53dd998f888524189c40f09421943

View changes file

Binary packages built by this source

djview: Transition package, djview3 to djview4

 Ease transition from djview or djview3 to djview4 with this dummy package.

djview3: Transition package, djview3 to djview4

 Ease transition from djview3 to djview4 with this dummy package.

djvulibre-bin: Utilities for the DjVu image format

 Executables including utilities for conversion between DjVu and other
 formats.

djvulibre-bin-dbgsym: debug symbols for djvulibre-bin
djvulibre-desktop: Desktop support for the DjVu image format

 Miscellaneous files to support the DjVu image format on the desktop.

djvuserve: CGI program for unbundling DjVu files on the fly

 CGI program to convert a bundled multi-page DjVu document into an
 indirect DjVu document on the fly. This provides for efficiently
 browsing large DjVu documents without transferring unnecessary pages.

djvuserve-dbgsym: debug symbols for djvuserve
libdjvulibre-dev: Development files for the DjVu image format

 DjVu image format static library and development files.
 .
 DjVu is a set of compression technologies, a file format, and a
 software platform for the delivery over the Web of digital documents,
 scanned documents, and high resolution images.
 .
 DjVu documents download and display extremely quickly, and look
 exactly the same on all platforms. DjVu can be seen as a superior
 alternative to PDF and Postscript for digital documents, to TIFF (and
 PDF) for scanned documents, to JPEG for photographs and pictures, and
 to GIF for large palettized images. DjVu is the only Web format that
 is practical for distributing high-resolution scanned documents in
 color.

libdjvulibre-text: Linguistic support files for libdjvulibre

 Runtime linguistic support files for the libdjvulibre library.

libdjvulibre21: Runtime support for the DjVu image format

 DjVu runtime library.

libdjvulibre21-dbgsym: debug symbols for libdjvulibre21