Lucene search
+L

268 matches found

OSV
OSV
added 2018/12/07 10:29 p.m.1 views

DEBIAN-CVE-2018-5815

An integer overflow error within the "parseqt" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file...

6.5CVSS6.8AI score0.02194EPSS
Exploits0References1
OSV
OSV
added 2018/12/07 10:29 p.m.1 views

DEBIAN-CVE-2018-5816

An integer overflow error within the "identify" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file Note: This vulnerability is caused due to an incomplete fix of CVE-2018-5804...

6.5CVSS6.7AI score0.02108EPSS
Exploits0References1
Prion
Prion
added 2018/12/07 10:29 p.m.18 views

Code injection

An error within the "parseminolta" function dcraw/dcraw.c in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file...

7.1CVSS6.3AI score0.02088EPSS
Exploits0References5Affected Software2
Cvelist
Cvelist
added 2018/12/07 10:0 p.m.39 views

CVE-2018-5813

An error within the "parseminolta" function dcraw/dcraw.c in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file...

6.3AI score0.02088EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2018/12/06 10:21 a.m.31 views

CVE-2018-19568

A floating point exception in kodakradcloadraw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...

5.5CVSS3.1AI score0.00925EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/12/06 10:21 a.m.32 views

CVE-2018-19567

A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...

5.5CVSS3.1AI score0.00925EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/12/06 10:20 a.m.25 views

CVE-2018-19566

A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

7.1CVSS1.9AI score0.01075EPSS
Exploits0References2
NVD
NVD
added 2018/11/29 5:29 a.m.12 views

CVE-2018-19655

A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file...

8.8CVSS8.3AI score0.02855EPSS
Exploits1References5
OSV
OSV
added 2018/11/29 5:29 a.m.2 views

DEBIAN-CVE-2018-19655

A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file...

8.8CVSS7.6AI score0.02855EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/11/29 5:29 a.m.27 views

CVE-2018-19655

A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file...

8.8CVSS7.2AI score0.02855EPSS
Exploits1References3
OSV
OSV
added 2018/11/29 5:29 a.m.11 views

UBUNTU-CVE-2018-19655

A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file...

8.8CVSS7.2AI score0.02855EPSS
Exploits1References4
Cvelist
Cvelist
added 2018/11/29 5:0 a.m.26 views

CVE-2018-19655

A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file...

8.2AI score0.02855EPSS
Exploits1References5
CVE
CVE
added 2018/11/29 5:0 a.m.86 views

CVE-2018-19655

CVE-2018-19655 is a stack-based overflow in the find_green() function of dcraw (up to version 9.28) that can be triggered by a malicious raw image and may allow remote control-flow hijack, DoS, or other impact when dcraw is used by apps such as ufraw-batch. Connected sources corroborate the flaw ...

8.8CVSS8.1AI score0.02855EPSS
Exploits1References5Affected Software1
CNVD
CNVD
added 2018/11/29 12:0 a.m.6 views

dcraw Buffer Overflow Vulnerability

dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A buffer overflow vulnerability exists in the 'findgreen' function in dcraw version 9.28 and earlier used in ufraw-batch and other devices....

8.8CVSS8.6AI score0.02855EPSS
Exploits1References1
CNVD
CNVD
added 2018/11/27 12:0 a.m.6 views

dcraw buffer overflow vulnerability (CNVD-2019-00792)

dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A buffer overflow vulnerability exists in cropmaskedpixels in dcraw 9.28 and earlier versions, which can be exploited by an attacker to cra...

7.1CVSS7AI score0.01075EPSS
Exploits0References1
CNVD
CNVD
added 2018/11/27 12:0 a.m.3 views

dcraw Floating Point Exception Vulnerability

dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A floating-point exception vulnerability exists in kodakradcloadraw in dcraw 9.28 and earlier versions, which can be exploited to cause an...

5.5CVSS6.6AI score0.00925EPSS
Exploits0References1
CNVD
CNVD
added 2018/11/27 12:0 a.m.24 views

dcraw floating point exception vulnerability (CNVD-2019-00790)

dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A floating-point exception vulnerability exists in parsetiffifd in dcraw 9.28 and earlier versions, which can be exploited to cause an...

5.5CVSS6.3AI score0.00925EPSS
Exploits0References1
CNVD
CNVD
added 2018/11/27 12:0 a.m.22 views

dcraw buffer overflow vulnerability (CNVD-2019-00791)

dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A heap buffer overflow vulnerability exists in parsetiffifd in dcraw 9.28 and earlier versions, which can be exploited by an attacker to...

7.1CVSS7.5AI score0.01075EPSS
Exploits0References1
Prion
Prion
added 2018/11/26 8:29 p.m.19 views

Buffer overflow

A buffer over-read in cropmaskedpixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

5.8CVSS6.9AI score0.01075EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/11/26 8:29 p.m.22 views

CVE-2018-19565

A buffer over-read in cropmaskedpixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

7.1CVSS7.1AI score0.01075EPSS
Exploits0References2
Rows per page
Query Builder