Linux Distros Unpatched Vulnerability : CVE-2018-5816

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow error within the identify function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by ze...

LibRaw 'identify()' function integer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. An integer overflow vulnerability exists in the 'identify' function of the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.12. A remote attacker can exploit this...

DEBIAN-CVE-2018-5815

An integer overflow error within the "parseqt" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file...

CVE-2018-5815

CVE-2018-5815 affects LibRaw up to version 0.18.11 in the parse_qt() function (internal/dcraw_common.cpp). A specially crafted Apple QuickTime file can trigger an integer overflow that leads to an infinite loop, i.e., potential denial of service. Public details in connected documents confirm the ...