An error within the “kodak_radc_load_raw()” function (internal/dcraw_common.cpp) related to the “buf” variable in LibRaw versions prior to 0.18.7 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | libraw | < 0.18.7-1 | libraw_0.18.7-1_all.deb |
Debian | 11 | all | libraw | < 0.18.7-1 | libraw_0.18.7-1_all.deb |
Debian | 10 | all | libraw | < 0.18.7-1 | libraw_0.18.7-1_all.deb |
Debian | 999 | all | libraw | < 0.18.7-1 | libraw_0.18.7-1_all.deb |
Debian | 13 | all | libraw | < 0.18.7-1 | libraw_0.18.7-1_all.deb |