OSV-2023-1356 Heap-buffer-overflow in rawspeed::DngDecoder::parseWhiteBalance

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65309 Crash type: Heap-buffer-overflow READ 4 Crash state: rawspeed::DngDecoder::parseWhiteBalance rawspeed::DngDecoder::decodeMetaDataInternal rawspeed::RawDecoder::decodeMetaData...

PT-2023-35668 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the parseWhiteBalance function within DngDecoder, which is part of the rawspeed library...

OSV-2023-756 Heap-buffer-overflow in rawspeed::DngDecoder::decodeMetaDataInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61800 Crash type: Heap-buffer-overflow READ 4 Crash state: rawspeed::DngDecoder::decodeMetaDataInternal rawspeed::RawDecoder::decodeMetaData...

PT-2023-35982 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash indicate it occurs in the rawspeed::DngDecoder::decodeMetaDataInternal and...

OSV-2022-1128 Heap-buffer-overflow in void rawspeed::DngOpcodes::PixelOpcode::applyOP<unsigned short, rawspeed::DngOpc

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52944 Crash type: Heap-buffer-overflow READ 4 Crash state: void rawspeed::DngOpcodes::PixelOpcode::applyOPunsigned short, rawspeed::DngOpc rawspeed::DngOpcodes::applyOpCodes rawspeed::DngDecoder::handleMetadata...

PT-2022-36734 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash occurs in the applyOP function of DngOpcodes::PixelOpcode when handling metadata in DngDecoder. Technical details include t...

OSV-2018-227 Heap-buffer-overflow in rawspeed::TableLookUp::setTable

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5256 Crash type: Heap-buffer-overflow WRITE 2 Crash state: rawspeed::TableLookUp::setTable rawspeed::RawImageData::setTable rawspeed::DngDecoder::handleMetadata...

librawspeed/TiffDecoderFuzzer-DngDecoder: Use-of-uninitialized-value in rawspeed::RawImageData::checkMemIsInitialized

Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=4903058250137600 Project: librawspeed Fuzzer: libFuzzerlibrawspeedTiffDecoderFuzzer-DngDecoder Fuzz target binary: TiffDecoderFuzzer-DngDecoder Job Type: libfuzzermsanlibrawspeed Platform Id:...

librawspeed/RawParserFuzzer-GetDecoder-Decode: Heap-buffer-overflow in rawspeed::TableLookUp::setTable

Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=6493942813032448 Project: librawspeed Fuzzer: libFuzzerlibrawspeedRawParserFuzzer-GetDecoder-Decode Fuzz target binary: RawParserFuzzer-GetDecoder-Decode Job Type: libfuzzerasanlibrawspeed...

librawspeed/RawParserFuzzer-GetDecoder-Decode: Heap-buffer-overflow in rawspeed::DngOpcodes::OffsetPerRowOrCol<rawspeed::DngOpcodes::DeltaRowOrColBase:

Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=4708787345686528 Project: librawspeed Fuzzer: afllibrawspeedRawParserFuzzer-GetDecoder-Decode Fuzz target binary: RawParserFuzzer-GetDecoder-Decode Job Type: aflasanlibrawspeed Platform Id:...

librawspeed: Use-of-uninitialized-value in rawspeed::DngOpcodes::FixBadPixelsConstant::apply

Project: https://github.com/darktable-org/rawspeed.git Detailed report: https://oss-fuzz.com/testcase?key=6497526213509120 Project: librawspeed Fuzzer: libFuzzerlibrawspeedTiffDecoderFuzzer-DngDecoder Fuzz target binary: TiffDecoderFuzzer-DngDecoder Job Type: libfuzzermsanlibrawspeed Platform Id:...