A djvulibre security update has been released for Debian GNU/Linux 7 Extended LTS (Wheezy)

ELA-188-1 djvulibre security update

Package: djvulibre
Version: 3.5.25.3-1+deb7u2
Related: CVE CVE-2019-18804

It was discovered that there was a NULL pointer dereference issue in the IW44 encoder/decoder within DjVu, a set of compression technologies, a file format, and a software platform for the delivery over the Web of digital documents.

For Debian 7 Wheezy, these problems have been fixed in version 3.5.25.3-1+deb7u2.

We recommend that you upgrade your djvulibre packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

It was discovered that there was a NULL pointer dereference issue in the IW44 encoder/decoder within DjVu, a set of compression technologies, a file format, and a software platform for the delivery over the Web of digital documents.