10 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-10529
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds read affecting the X3F property table list implementation in librawx3f.cpp and librawcxx.cpp...
Fedora 28 : mingw-LibRaw (2018-d3b44e5574)
Update to LibRaw-0.18.10, see https://www.libraw.org/news/libraw-0-18-10 for details. ---- Update to LibRaw-0.18.9, see https://www.libraw.org/news/libraw-0-18-9 for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
Fedora 28 : LibRaw (2018-8c4e0b4335)
https://www.libraw.org/news/libraw-0-18-11 ---- CVE-2018-10529 fixed: out of bounds read in X3F parser CVE-2018-10528 fixed: possible stack overrun in X3F parser Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenabl...
Ubuntu: Security Advisory (USN-3639-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : mingw-LibRaw (2018-ccb2cc96be)
Update to LibRaw-0.18.10, see https://www.libraw.org/news/libraw-0-18-10 for details. ---- Update to LibRaw-0.18.9, see https://www.libraw.org/news/libraw-0-18-9 for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
Fedora Update for mingw-LibRaw FEDORA-2018-d3b44e5574
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for LibRaw FEDORA-2018-8c4e0b4335
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ASA-201805-2] libraw: multiple issues
Arch Linux Security Advisory ASA-201805-2 ========================================= Severity: Critical Date : 2018-05-09 CVE-ID : CVE-2018-10528 CVE-2018-10529 Package : libraw Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-681 Summary ======= The package libraw...
Ubuntu 16.04 LTS / 18.04 LTS : LibRaw vulnerabilities (USN-3639-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3639-1 advisory. It was discovered that LibRaw incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code. CVE-2018-1052...
CVE-2018-10529
CVE-2018-10529 affects LibRaw 0.18.9, causing an out-of-bounds read in the X3F property table list implementation (libraw_x3f.cpp and libraw_cxx.cpp). Multiple connected sources confirm the issue and indicate mitigation in later LibRaw releases (Fedora/RHEL advisories and libraw.org updates) with...