6 matches found
Debian dla-3113 : libraw-bin - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3113 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3113-1 [email protected]...
Amazon Linux 2 : LibRaw (ALAS-2023-2256)
The version of LibRaw installed on the remote host is prior to 0.19.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2256 advisory. Buffer Overflow vulnerability in LibRaw::stretch function in libraw\src\postprocessing\aspectratio.cpp. CVE-2020-22628 In...
Medium: LibRaw
Issue Overview: Buffer Overflow vulnerability in LibRaw::stretch function in libraw\src\postprocessing\aspectratio.cpp. CVE-2020-22628 In LibRaw, there is an out-of-bounds write vulnerability within the "newnode" function libraw\src\x3f\x3futilspatched.cpp that can be triggered via a crafted X3F...
SUSE CVE-2020-35532
In LibRaw, an out-of-bounds read vulnerability exists within the "simpledecoderow" function libraw\src\x3f\x3futilspatched.cpp which can be triggered via an image with a large rowstride field...
UBUNTU-CVE-2020-35532
In LibRaw, an out-of-bounds read vulnerability exists within the "simpledecoderow" function libraw\src\x3f\x3futilspatched.cpp which can be triggered via an image with a large rowstride field...
CVE-2020-35532
CVE-2020-35532 is an out-of-bounds read in LibRaw, triggered by a crafted image with a large row_stride that targets the simple_decode_row() function (libraw\src\x3f\x3f_utils_patched.cpp). Connected documents confirm this CVE across distributions, e.g., Debian DLA-3113 fixes in LibRaw 0.19.2-2+d...