Linux Distros Unpatched Vulnerability : CVE-2017-6887

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A boundary error within the parsetiffifd function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e....

RHEL 7 : libraw (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libraw: Memory corruption in the parsetiffifd CVE-2017-6886 - A boundary error within the parsetiffifd...

SUSE CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

Fedora Update for mingw-LibRaw FEDORA-2017-bce18ed3f2

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2017-0223 Updated libraw packages fix security vulnerabilities

A memory corruption in parsetiffifd function CVE-2017-6886. A memory corruption via e.g. a specially crafted KDC file parsetiffifd CVE-2017-6887. An integer overflow error within the "foveonloadcamf" function CVE-2017-6889. A boundary error within the "foveonloadcamf" function CVE-2017-6890...

CVE-2017-6887

LibRaw contains a boundary error in parse_tiff_ifd() (internal/dcraw_common.cpp) that enables memory corruption when processing a crafted KDC TIFF-like file; affected versions are LibRaw before 0.18.2. The issue is demonstrated with a file where model is DSLR-A100 and contains multiple sequences ...