libraw -- denial of service and remote code execution

2017-09-11T00:00:00
ID 4CD857D9-26D2-4417-B765-69701938F9E0
Type freebsd
Reporter FreeBSD
Modified 2017-09-11T00:00:00

Description

libraw developers report:

A Stack-based Buffer Overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack.