Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/30 12:0 a.m.7 views

Amazon Linux 2 : dcraw, --advisory ALAS2-2025-3017 (ALAS-2025-3017)

The version of dcraw installed on the remote host is prior to 9.19-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3017 advisory. There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary...

9.3CVSS8.1AI score0.00876EPSS
Exploits1References4
Amazon
Amazon
added 2025/09/29 12:0 a.m.4 views

Medium: dcraw

Issue Overview: There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed in the victim's system. CVE-2021-3624 Affected Packages: dcraw Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

9.3CVSS7.7AI score0.00876EPSS
Exploits1
Amazon
Amazon
added 2025/09/29 12:0 a.m.6 views

Medium: LibRaw

Issue Overview: There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed in the victim's system. CVE-2021-3624 Affected Packages: LibRaw Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

9.3CVSS7.7AI score0.00876EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-3624

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed in th...

9.3CVSS7AI score0.00876EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 7 : dcraw (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dcraw: Stack-based buffer overflow in the findgreen function CVE-2018-19655 - dcraw: Buffer overflow caus...

8.3AI score0.02855EPSS
Exploits2References6
OSV
OSV
added 2022/05/19 1:24 p.m.9 views

SUSE-SU-2022:1749-1 Security update for dcraw

This update for dcraw fixes the following issues: - CVE-2017-13735: Fixed a denial of service issue due to a floating point exception bsc1056170. - CVE-2017-14608: Fixed an invalid memory access that could lead to information disclosure or denial of service bsc1063798. - CVE-2018-19655: Fixed a...

9.3CVSS7.5AI score0.02988EPSS
Exploits3References23
OSV
OSV
added 2022/04/20 7:23 a.m.8 views

SUSE-SU-2022:1277-1 Security update for dcraw

This update for dcraw fixes the following issues: - CVE-2017-13735: Fixed a denial of service issue due to a floating point exception bsc1056170. - CVE-2017-14608: Fixed an invalid memory access that could lead to information disclosure or denial of service bsc1063798. - CVE-2018-19655: Fixed a...

9.3CVSS7.5AI score0.02988EPSS
Exploits3References23
Circl
Circl
added 2022/04/18 8:29 p.m.3 views

CVE-2021-3624

creationtimestamp| type| source ---|---|--- 2022-04-18 20:29:47+00:00| seen| https://t.me/cibsecurity/41046...

9.3CVSS7.8AI score0.00876EPSS
Exploits1References1
CVE
CVE
added 2022/04/18 4:20 p.m.125 views

CVE-2021-3624

The CVE-2021-3624 issue is confirmed in connected sources as an integer overflow in dcraw that allows arbitrary code execution when processing crafted X3F images. Amazon Linux 2 advisories ALAS2-2025-3017 and ALAS2-2025-3016 link this to dcraw (and LibRaw) and specify patched packages: dcraw 9.19...

9.3CVSS7.8AI score0.00876EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2022/04/18 4:20 p.m.39 views

CVE-2021-3624

There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed in the victim's system...

9.3CVSS7.7AI score0.00876EPSS
Exploits1
Rows per page
Query Builder