A flaw was found in latest djvulibre. An out of bounds write in function DJVU::filter_bv() via crafted djvu file may lead to application crash and other consequences. References: https://bugzilla.redhat.com/show_bug.cgi?id=1943408
Created djvulibre tracking bugs for this issue: Affects: epel-7 [bug 1958171] Created mingw-djvulibre tracking bugs for this issue: Affects: fedora-all [bug 1958172]
Created djvulibre tracking bugs for this issue: Affects: fedora-all [bug 1943408]
Acknowledgments: Name: 1vanChen (NSFOCUS Security Team)