6 matches found
Debian dla-3113 : libraw-bin - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3113 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3113-1 [email protected]...
Medium: LibRaw
Issue Overview: Buffer Overflow vulnerability in LibRaw::stretch function in libraw\src\postprocessing\aspectratio.cpp. CVE-2020-22628 In LibRaw, there is an out-of-bounds write vulnerability within the "newnode" function libraw\src\x3f\x3futilspatched.cpp that can be triggered via a crafted X3F...
Amazon Linux 2 : LibRaw (ALAS-2023-2256)
The version of LibRaw installed on the remote host is prior to 0.19.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2256 advisory. Buffer Overflow vulnerability in LibRaw::stretch function in libraw\src\postprocessing\aspectratio.cpp. CVE-2020-22628 In...
SUSE CVE-2020-35530
In LibRaw, there is an out-of-bounds write vulnerability within the "newnode" function libraw\src\x3f\x3futilspatched.cpp that can be triggered via a crafted X3F file...
CVE-2020-35530
creationtimestamp| type| source ---|---|--- 2022-09-01 22:38:19+00:00| seen| https://t.me/cibsecurity/49179...
CVE-2020-35530
CVE-2020-35530 is a LibRaw vulnerability: an out-of-bounds write in the new_node() path (libraw/src/x3f_utils_patched.cpp) that can be triggered by a crafted X3F file. The issue is exploitable locally (AV:L, AC:L) with user interaction required, and the CVSS base score is 5.5 (Medium) with availa...