A vulnerability was found in DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp. Reference: https://github.com/TeamSeri0us/pocs/blob/master/djvulibre/DJVU__filter_fv%40IW44EncodeCodec.cpp_499-43___SEGV_UNKNOW.md https://lists.debian.org/debian-lts-announce/2019/11/msg00004.html https://sourceforge.net/p/djvu/bugs/309/
Created djvulibre tracking bugs for this issue: Affects: fedora-all [bug 1771267] Created mingw-djvulibre tracking bugs for this issue: Affects: fedora-all [bug 1771268]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.