23 matches found
EUVD-2018-11256
Malware in sbrugna...
EUVD-2013-1476
Malware in sbrugna...
EUVD-2018-11254
Malware in sbrugna...
EUVD-2015-3920
Malware in sbrugna...
EUVD-2018-11339
Malware in sbrugna...
EUVD-2018-11255
Malware in sbrugna...
Amazon Linux 2 : dcraw, --advisory ALAS2-2025-3017 (ALAS-2025-3017)
The version of dcraw installed on the remote host is prior to 9.19-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3017 advisory. There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary...
CVE-2021-3624
There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed in the victim's system...
UBUNTU-CVE-2018-19655
A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file...
dcraw Buffer Overflow Vulnerability
dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A buffer overflow vulnerability exists in the 'findgreen' function in dcraw version 9.28 and earlier used in ufraw-batch and other devices....
dcraw buffer overflow vulnerability (CNVD-2019-00792)
dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A buffer overflow vulnerability exists in cropmaskedpixels in dcraw 9.28 and earlier versions, which can be exploited by an attacker to cra...
dcraw floating point exception vulnerability (CNVD-2019-00790)
dcraw is a U.S. software developer David J. Coffin developed a set of open source for the camera to shoot the RAW film into PPM or TIFF format picture tool . A floating-point exception vulnerability exists in parsetiffifd in dcraw 9.28 and earlier versions, which can be exploited to cause an...
CVE-2018-19568
A floating point exception in kodakradcloadraw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...
CVE-2018-19565
A buffer over-read in cropmaskedpixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...
CVE-2018-19567
A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...
CVE-2018-19566
A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...
CVE-2017-14608
In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...
Fedora 22 : LibRaw-0.16.2-1.fc22 (2015-8432)
Latest upstream bugfix. Fixed dcraw vulnerability in ljpegstart Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...
CVE-2015-3885
Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...
Fedora 22 : LibRaw-0.16.1-6.fc22 (2015-7993)
Fixed dcraw vulnerability in ljpegstart Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...