12 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-5800
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An off-by-one error within the LibRaw::kodakycbcrloadraw function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.7 can be exploited to cause a...
Debian DLA-2903-1 : libraw - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2903 advisory. - In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker...
CVE-2018-5800
A heap-based out-of-bounds access flaw was found in the way LibRaw processed images. An attacker could potentially use this flaw to crash applications using LibRaw by tricking them into processing crafted images...
[SECURITY] [DLA 1734-1] libraw security update
Package : libraw Version : 0.16.0-9+deb8u4 CVE ID : CVE-2018-5800 CVE-2018-5801 CVE-2018-5802 CVE-2018-5808 CVE-2018-5817 CVE-2018-5818 CVE-2018-5819 Secunia Research has discovered multiple vulnerabilities in libraw, a raw image decoder library, which can be exploited to cause a Denial of Servic...
CVE-2018-5800
The vulnerability CVE-2018-5800 targets LibRaw, specifically the LibRaw::kodak_ycbcr_load_raw() function in internal/dcraw_common.cpp. It affects LibRaw versions prior to 0.18.7 and can cause a heap-based buffer overflow, leading to a crash. This is confirmed in the linked vulnerability set (CVE-...
Scientific Linux Security Update : libkdcraw on SL7.x x86_64 (20181030)
LibRaw: Stack-based buffer overflow in quicktake100loadraw function in internal/dcrawcommon.cpp CVE-2018-5805 LibRaw: Heap-based buffer overflow in LibRaw::kodakycbcrloadraw function in internal/dcrawcommon.cpp CVE-2018-5800 LibRaw: NULL pointer dereference in LibRaw::unpack function...
libkdcraw security update
CentOS Errata and Security Advisory CESA-2018:3065 An update for libkdcraw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...
Moderate: Red Hat Security Advisory: libkdcraw security update
An update for libkdcraw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
SUSE SLED12 Security Update : libraw (SUSE-SU-2018:3343-1)
This update for libraw fixes the following issues : Security issues fixed : CVE-2018-5800: Fixed heap-based buffer overflow in LibRaw::kodakycbcrloadraw function bsc1084691. CVE-2018-5801: Fixed NULL pointer dereference in LibRaw::unpack function bsc1084690. CVE-2018-5802: Fixed out-of-bounds rea...
CVE-2018-5800
An off-by-one error within the "LibRaw::kodakycbcrloadraw" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.7 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash...
FreeBSD : libraw -- multiple DoS vulnerabilities (6f0b0cbf-1274-11e8-8b5b-4ccc6adda413)
Secunia Research reports : CVE-2018-5800: An off-by-one error within the 'LibRaw::kodakycbcrloadraw' function internal/dcrawcommon.cpp can be exploited to cause a heap-based buffer overflow and subsequently cause a crash. CVE-2017-5801: An error within the 'LibRaw::unpack' function...
LibRaw 0.18.7 Denial Of Service Vulnerability
Exploit for linux platform in category dos / poc LibRaw 0.18.7 Denial Of Service Vulnerability ====================================================================== 1 Affected Software LibRaw versions prior to 0.18.7. ====================================================================== 2...