SUSE SLED12 Security Update : libraw (SUSE-SU-2017:2300-1)

This update for libraw fixes the following issues : - CVE-2015-3885: A specially crafted raw image file could have caused a Denial of Service through an integer overflow. bsc930683 - CVE-2015-8367: The function phaseonecorrect did not handle memory object initialization correctly, which may have...

MGASA-2017-0223 Updated libraw packages fix security vulnerabilities

A memory corruption in parsetiffifd function CVE-2017-6886. A memory corruption via e.g. a specially crafted KDC file parsetiffifd CVE-2017-6887. An integer overflow error within the "foveonloadcamf" function CVE-2017-6889. A boundary error within the "foveonloadcamf" function CVE-2017-6890...

CVE-2017-6889

An integer overflow error within the "foveonloadcamf" function dcrawfoveon.c in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow...

CVE-2017-6889

LibRaw-demosaic-pack-GPL2 is affected by CVE-2017-6889 due to an integer/heap overflow in foveon_load_camf() in dcraw_foveon.c, prior to version 0.18.2. The issue is described as a heap-based buffer overflow, with referenced advisories noting potential denial of service. A fix exists in LibRaw 0....