CVE-2021-46310

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions djvulibre version 3.5.28

Description The issue is related to a lack of check for division by zero in the IW44Image.cpp component of the djvulibre library, which allows attackers to cause a denial of service. This can be exploited by a remote attacker to disrupt service.

Recommendations For djvulibre version 3.5.28, consider applying a patch or updating to a newer version that fixes the issue in IW44Image.cpp to prevent division by zero errors. As a temporary workaround, consider restricting access to the IW44Image.cpp component until a patch is available.

Exploit

Fix

DoS

Divide By Zero

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-369

Related Identifiers

ALT-PU-2025-12685

ALT-PU-2025-12687

BDU:2023-05879

CVE-2021-46310

DLA-4247-1

MGASA-2024-0183

OESA-2023-1641

OPENSUSE-SU-2023_3520-1

OPENSUSE-SU-2024:13178-1

ROSA-SA-2024-2428

SUSE-SU-2023:3520-1

SUSE-SU-2023:3755-1

SUSE-SU-2023_3520-1

Affected Products

Alt Linux

Astra Linux

Debian

Red Os

Suse

Djvulibre

CVE-2021-46310

Weakness Enumeration

Related Identifiers

Affected Products

References · 44