TEMP-0775193-7F000E

NameTEMP-0775193-7F000E
Descriptiondjvudigital: insecure use of /tmp
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs775193

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
djvulibre (PTS)jessie, jessie (lts)3.5.25.4-4+deb8u4vulnerable
stretch (security), stretch (lts), stretch3.5.27.1-7+deb9u2fixed
buster, buster (security)3.5.27.1-10+deb10u1fixed
sid, bookworm, bullseye3.5.28-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
djvulibresource(unstable)3.5.27.1-3unimportant775193

Notes

[squeeze] - djvulibre <no-dsa> (Minor issue)
Originally was addressed in 3.5.27.1-1 but it was reintroduced
with the 3.5.27.1-2 upload, cf. https://bugs.debian.org/775193#17
Not exploitable with kernel hardening since wheezy

Search for package or bug name: Reporting problems