1805 matches found
Security update for libraw (moderate)
openSUSE Security Update: Security update for libraw Announcement ID: openSUSE-SU-2019:0008-1 Rating: moderate References: 1097975 1103200 1103206 Cross-References: CVE-2018-5804 CVE-2018-5813 CVE-2018-5815 CVE-2018-5816 Affected Products: openSUSE Leap 15.0 An update that fixes four...
CVE-2018-20363
LibRaw::raw2image in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference...
CVE-2018-20365
LibRaw::raw2image in librawcxx.cpp has a heap-based buffer overflow...
CVE-2018-20364
LibRaw::copybayer in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference...
SUSE SLED12 Security Update : libraw (SUSE-SU-2019:0002-1)
This update for libraw fixes the following issues : Security issues fixed : CVE-2018-5808: Fixed a stack-based buffer overflow and code execution vulnerability in findgreen function internal/dcrawcommon.cpp bsc1118894. CVE-2018-5805: Fixed a boundary error within the quicktake100loadraw function...
SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2019:0005-1)
This update for libraw fixes the following issues : Security issues fixed : The following security vulnerabilities were addressed : CVE-2018-5813: Fixed an error within the 'parseminolta' function dcraw/dcraw.c that could be exploited to trigger an infinite loop via a specially crafted file. This...
Fedora 28 : mingw-LibRaw (2018-d3b44e5574)
Update to LibRaw-0.18.10, see https://www.libraw.org/news/libraw-0-18-10 for details. ---- Update to LibRaw-0.18.9, see https://www.libraw.org/news/libraw-0-18-9 for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
Fedora 28 : mingw-LibRaw (2018-f37cbaafdf)
Update to LibRaw-0.18.13, see https://www.libraw.org/news/libraw-0-18-13 for details. Fixes CVE-2018-5815, CVE-2018-5816. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean a...
Fedora 28 : LibRaw (2018-8c4e0b4335)
https://www.libraw.org/news/libraw-0-18-11 ---- CVE-2018-10529 fixed: out of bounds read in X3F parser CVE-2018-10528 fixed: possible stack overrun in X3F parser Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenabl...
Fedora 29 : LibRaw (2018-801432b551)
Fixes for CVE-2018-20337, CVE-2018-20363, CVE-2018-20364, CVE-2018-20365 https://www.libraw.org/news/libraw-0-19-2-release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean...
Fedora 28 : LibRaw (2018-cfcd6d96de)
Secunia Advisory SA83507, credits Kasper Leigh Haabb, Secunia Research at Flexera parseqt: possible integer overflow reject broken/crafted NOKIARAW files Backported 0.19-patch to recover read position if TIFF/EXIF tag is too long Note that Tenable Network Security has extracted the preceding...
SUSE-SU-2019:0005-1 Security update for libraw
This update for libraw fixes the following issues: Security issues fixed: The following security vulnerabilities were addressed: - CVE-2018-5813: Fixed an error within the 'parseminolta' function dcraw/dcraw.c that could be exploited to trigger an infinite loop via a specially crafted file. This...
SUSE-SU-2019:0002-1 Security update for libraw
This update for libraw fixes the following issues: Security issues fixed: - CVE-2018-5808: Fixed a stack-based buffer overflow and code execution vulnerability in findgreen function internal/dcrawcommon.cpp bsc1118894. - CVE-2018-5805: Fixed a boundary error within the quicktake100loadraw functio...
openSUSE: Security Advisory for libraw (openSUSE-SU-2018:4299-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : libraw (openSUSE-2018-1619)
This update for libraw fixes the following issues : The following security vulnerabilities were addressed : - CVE-2018-5804: Fixed a type confusion error within the identify function that could trigger a division by zero, leading to a denial of service Dos. boo1097975 - CVE-2018-5805: Fixed a...
[SECURITY] Fedora 29 Update: LibRaw-0.19.2-1.fc29
LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future...
Security update for libraw (moderate)
This update for libraw fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-5804: Fixed a type confusion error within the identify function that could trigger a division by zero, leading to a denial of service Dos. boo1097975 - CVE-2018-5805: Fixed a...
imagemagick/ping_dng_fuzzer: Use-of-uninitialized-value in LibRaw::parse_sinar_ia
Detailed report: https://oss-fuzz.com/testcase?key=5747962597081088 Project: imagemagick Fuzzer: libFuzzerimagemagickpingdngfuzzer Fuzz target binary: pingdngfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State:...
LibRaw 'raw2image()' function heap buffer overflow vulnerability
LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A heap buffer overflow vulnerability exists in the 'raw2image' function of the librawcxx.cpp file in LibRaw. An attacker can exploit this vulnerability to cause a denial of...
LibRaw 'copy_bayer' function null pointer backreference vulnerability
LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A null pointer back-reference vulnerability exists in the 'copybayer' function of the librawcxx.cpp file in LibRaw version 0.19.1. An attacker can exploit this vulnerability to...