8 matches found
Astra Linux – Vulnerability in libraw
In LibRaw before 0.21.4, the processing of tag 0x412 in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...
TencentOS Server 4: LibRaw (TSSA-2025:0399)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0399 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2025-43961
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser. CVE-2025-43961 Note that Nessus relies on the presence o...
Libraw 缓冲区错误漏洞
Libraw is a C++ library from Libraw for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images, supporting various operating systems. A buffer error vulnerability exists in Libraw versions prior to 0.21.4, which stems from an out-of-bounds read by the Fujifilm 0xf00c tag parser in...
Libraw 安全漏洞
Libraw is a C++ library from Libraw for processing RAWCRW/CR2,NEF,RAF,DNG,andothers format images, supporting various operating systems. A security vulnerability exists in Libraw versions prior to 0.21.4, which stems from the phaseonecorrect function in decoders/loadmfbacks.cpp not enforcing the...
PT-2023-24206 · Pomerium · Pomerium
Name of the Vulnerable Software and Affected Versions: Pomerium versions prior to 0.17.4 Pomerium versions prior to 0.18.1 Pomerium versions prior to 0.19.2 Pomerium versions prior to 0.20.1 Pomerium versions prior to 0.21.4 Pomerium versions prior to 0.22.2 Description: Pomerium is an identity a...
slpjs Input Validation Error Vulnerability
slpjs is a JavaScript library for validating and building the Simple Ledger Protocol SLP. An input validation error vulnerability exists in versions of slpjs prior to 0.21.4. The vulnerability stems from a network system or product that does not properly validate input data...
slpjs input validation error vulnerability
slpjs is a JavaScript library for validating and building the Simple Ledger Protocol SLP. An input validation error vulnerability exists in versions of slpjs prior to 0.21.4, which can be exploited by attackers to create specially crafted bitcoin scripts...