CVE-2025-53367 | DjvuNet DjVuLibre up to 3.5.28 MMRDecoder::scanruns out-of-bounds write (GHSL-2025-055)

Inserito da Angelo Barbosa | Lug 4, 2025 | CVE

A vulnerability, which was classified as critical, has been found in DjvuNet DjVuLibre up to 3.5.28. This issue affects the function MMRDecoder::scanruns. The manipulation leads to out-of-bounds write.

The identification of this vulnerability is CVE-2025-53367. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53367 | DjvuNet DjVuLibre up to 3.5.28 MMRDecoder::scanruns out-of-bounds write (GHSL-2025-055)

Post correlati

CVE-2023-39444 | GTKWave 3.3.115 LXT2 Parser out-of-bounds write (TALOS-2023-1826)

CVE-2024-22095 | Intel Server D50DNP PlatformVariableInitDxe Driver input validation (intel-sa-01080)

CVE-2024-50201 | Linux Kernel up to 5.10.227/5.15.168/6.1.113/6.6.57/6.11.4 radeon initialization

CVE-2025-22220 | VMware Aria Operations for Logs up to 8.18.2 API Privilege Escalation