High severityNVD Advisory· Published Jul 3, 2025· Updated Apr 15, 2026
CVE-2025-53367
CVE-2025-53367
Description
DjVuLibre is a GPL implementation of DjVu, a web-centric format for distributing documents and images. Prior to version 3.5.29, the MMRDecoder::scanruns method is affected by an OOB-write vulnerability, because it does not check that the xr pointer stays within the bounds of the allocated buffer. This can lead to writes beyond the allocated memory, resulting in a heap corruption condition. An out-of-bounds read with pr is also possible for the same reason. This issue has been patched in version 3.5.29.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.openwall.com/lists/oss-security/2025/07/03/1nvd
- www.openwall.com/lists/oss-security/2025/07/18/3nvd
- github.blog/security/vulnerability-research/cve-2025-53367-an-exploitable-out-of-bounds-write-in-djvulibrenvd
- github.blog/security/vulnerability-research/cve-2025-53367-an-exploitable-out-of-bounds-write-in-djvulibre/nvd
- github.com/github/securitylab/tree/main/SecurityExploits/DjVuLibre/MMRDecoder_scanruns_CVE-2025-53367nvd
- lists.debian.org/debian-lts-announce/2025/07/msg00007.htmlnvd
- securitylab.github.com/advisories/GHSL-2025-055_DjVuLibre/nvd
- sourceforge.net/p/djvu/djvulibre-git/ci/33f645196593d70bd5e37f55b63886c31c82c3danvd
- www.openwall.com/lists/oss-security/2025/07/03/1nvd
News mentions
0No linked articles in our index yet.