Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | darktable | < 1.2.2-2 | darktable_1.2.2-2_all.deb |
Debian | 11 | all | darktable | < 1.2.2-2 | darktable_1.2.2-2_all.deb |
Debian | 10 | all | darktable | < 1.2.2-2 | darktable_1.2.2-2_all.deb |
Debian | 999 | all | darktable | < 1.2.2-2 | darktable_1.2.2-2_all.deb |
Debian | 13 | all | darktable | < 1.2.2-2 | darktable_1.2.2-2_all.deb |
Debian | 12 | all | dcraw | < 9.28-1 | dcraw_9.28-1_all.deb |
Debian | 11 | all | dcraw | < 9.28-1 | dcraw_9.28-1_all.deb |
Debian | 10 | all | dcraw | < 9.28-1 | dcraw_9.28-1_all.deb |
Debian | 999 | all | dcraw | < 9.28-1 | dcraw_9.28-1_all.deb |
Debian | 13 | all | dcraw | < 9.28-1 | dcraw_9.28-1_all.deb |