CVE-2025-53367 PoC — DjVuLibre 安全漏洞

Source

https://github.com/ThePhykon/CVE-2025-53367-POC

Associated Vulnerability

Title:DjVuLibre 安全漏洞 (CVE-2025-53367)
Description:DjVuLibre是一款DjVu（计算机文件格式）的开源实现，它包括DjVu文件查看器、浏览器插件、DjVu文件解码/编码器和其它实用程序。 DjVuLibre 3.5.29之前版本存在安全漏洞，该漏洞源于MMRDecoder::scanruns方法存在越界写入漏洞，可能导致堆损坏。

Description

A simple POC of the CVE-2025-53367, creating a .djvu-file which triggers an OOB-write in the heap

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!