PT-2023-5262 · Djvulibre+5 · Djvulibre+5

Zfeixq

Publicado

2023-08-22

Atualizado

2025-11-29

CVE-2021-46310

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions djvulibre version 3.5.28

Description The issue is related to a lack of check for division by zero in the IW44Image.cpp component of the djvulibre library, which allows attackers to cause a denial of service. This can be exploited by a remote attacker to disrupt service.

Recommendations For djvulibre version 3.5.28, consider applying a patch or updating to a newer version that fixes the issue in IW44Image.cpp to prevent division by zero errors. As a temporary workaround, consider restricting access to the IW44Image.cpp component until a patch is available.

Exploit

Correção

DoS

Divide By Zero

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-369

Identificadores relacionados

ALT-PU-2025-12685

ALT-PU-2025-12687

BDU:2023-05879

CVE-2021-46310

DLA-4247-1

MGASA-2024-0183

OESA-2023-1641

OPENSUSE-SU-2023_3520-1

OPENSUSE-SU-2024:13178-1

ROSA-SA-2024-2428

SUSE-SU-2023:3520-1

SUSE-SU-2023:3755-1

SUSE-SU-2023_3520-1

Produtos afetados

Alt Linux

Astra Linux

Debian

Red Os

Suse

Djvulibre

PT-2023-5262 · Djvulibre+5 · Djvulibre+5

CVE-2021-46310

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 44