Gentoo Linux Security Advisory 201402-13 - A vulnerability in DjVu could result in execution of arbitrary code or Denial of Service. Versions less than 3.5.25.3 are affected.
2c35d3bf0c65f314abdf03236087f2b339f6695448e8f2099e1dea49db3eb703
Debian Linux Security Advisory 2844-1 - It was discovered that djvulibre, the Open Source DjVu implementation project, can be crashed or possibly make it execute arbitrary code when processing a specially crafted djvu file.
d7ca29eafee9d5e622caf3059b505b8d854dd08ed68522086213d1b74c3930ec
Ubuntu Security Notice 2056-1 - It was discovered that DjVuLibre incorrectly handled certain memory operations. If a user or automated system were tricked into processing a specially crafted DjVu file, applications could be made to crash, resulting in a denial of service, or possibly execute arbitrary code.
53ee3dc1a87894466c917b6268a94748f60a6d85146f0816de76d57f02d46ca6