Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2018-19566

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the...

7.1CVSS6.9AI score0.01075EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.25 views

RHEL 7 : dcraw (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dcraw: Stack-based buffer overflow in the findgreen function CVE-2018-19655 - dcraw: Buffer overflow caus...

8.3AI score0.02855EPSS
Exploits2References6
OSV
OSV
added 2022/05/19 1:24 p.m.9 views

SUSE-SU-2022:1749-1 Security update for dcraw

This update for dcraw fixes the following issues: - CVE-2017-13735: Fixed a denial of service issue due to a floating point exception bsc1056170. - CVE-2017-14608: Fixed an invalid memory access that could lead to information disclosure or denial of service bsc1063798. - CVE-2018-19655: Fixed a...

9.3CVSS7.5AI score0.02988EPSS
Exploits3References23
OSV
OSV
added 2022/04/20 7:23 a.m.8 views

SUSE-SU-2022:1277-1 Security update for dcraw

This update for dcraw fixes the following issues: - CVE-2017-13735: Fixed a denial of service issue due to a floating point exception bsc1056170. - CVE-2017-14608: Fixed an invalid memory access that could lead to information disclosure or denial of service bsc1063798. - CVE-2018-19655: Fixed a...

9.3CVSS7.5AI score0.02988EPSS
Exploits3References23
RedhatCVE
RedhatCVE
added 2018/12/06 10:20 a.m.25 views

CVE-2018-19566

A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

7.1CVSS1.9AI score0.01075EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/11/26 8:29 p.m.29 views

CVE-2018-19566

A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

7.1CVSS7AI score0.01075EPSS
Exploits0References3
OSV
OSV
added 2018/11/26 8:29 p.m.14 views

CVE-2018-19566

A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

7.1CVSS9.1AI score
Exploits0References2
CVE
CVE
added 2018/11/26 8:0 p.m.71 views

CVE-2018-19566

CVE-2018-19566 is a heap buffer over-read in parse_tiff_ifd in the dcraw code (up to version 9.28). Exploitation could crash the host application or leak private information when processing malicious TIFF files. Connected sources indicate fixes in dcraw-9.28.0-2.1 (openSUSE), but no vendor-specif...

7.1CVSS7.2AI score0.01075EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2018/11/26 8:0 p.m.25 views

CVE-2018-19566

A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...

7.1CVSS7.5AI score0.01075EPSS
Exploits0
Rows per page
Query Builder