CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

CVE-2018-20337

There is a confirmed vulnerability: CVE-2018-20337, a stack-based buffer overflow in LibRaw 0.19.1 the parse_makernote function of dcraw_common.cpp. Crafting input can cause denial of service or possibly other unspecified impact. The connected Nessus/RHEL/AlmaLinux/Tencent/Ten able advisories ref...

CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

LibRaw 'unpacked_load_raw()' Function Denial of Service Vulnerability

LibRaw is a C++ library for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A denial of service vulnerability exists in the LibRaw 'unpackedloadraw' function. An attacker can exploit the vulnerability to cause a DoS Denial of Service...

LibRaw 'parse_rollei()' function denial of service vulnerability

LibRaw is a C++ library for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A denial of service vulnerability exists in the LibRaw 'parserollei' function. An attacker can exploit the vulnerability to cause a DoS Denial of Service...

LibRaw 'parse_sinar_ia()' Function Denial of Service Vulnerability

LibRaw is a C++ library for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A denial of service vulnerability exists in the LibRaw 'parsesinaria' function. An attacker can exploit the vulnerability to cause a DoS Denial of Service...

LibRaw 'LibRaw::panasonic_load_raw()' function heap buffer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A heap buffer overflow vulnerability exists in the 'LibRaw::panasonicloadraw' function in the dcrawcommon.cpp file in LibRaw versions prior to 0.18.6. A remote attacker can...

LibRaw 'LibRaw::xtrans_interpolate()' function denial of service vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A security vulnerability exists in the 'LibRaw::xtransinterpolate' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.6. A remote attacker can explo...

Code Execution

Libraw.so is vulnerable to code execution. An error within the LibRaw::parseexif function in internal/dcrawcommon.cpp allows an attacker to execute arbitrary code via a stack-based buffer overflow...

Arbitrary Code Execution

Libraw.so is vulnerable to code execution. An error within the findgreen function in internal/dcrawcommon.cpp allows an attacker to execute code via a stack-based buffer overflow...

LibRaw 'LibRaw::parse_exif()' function stack buffer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A stack buffer overflow vulnerability exists in the 'LibRaw::parseexif' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.9. A remote attacker coul...

LibRaw 'find_green()' function stack buffer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A stack buffer overflow vulnerability exists in the 'findgreen' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.9. A remote attacker could exploi...

LibRaw 'identify()' function integer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. An integer overflow vulnerability exists in the 'identify' function of the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.12. A remote attacker can exploit this...

LibRaw 'parse_qt()' function integer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. An integer overflow vulnerability exists in the 'parseqt' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.12. A remote attacker can exploit this...

LibRaw 'nikon_coolscan_load_raw()' function null pointer dereference vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A security vulnerability exists in the 'nikoncoolscanloadraw' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.9. A remote attacker can exploit th...

LibRaw 'identify()' Function Type Obfuscation Vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A type-obfuscation vulnerability exists in the 'identify' function of the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.8. A remote attacker can exploit this...

DEBIAN-CVE-2018-5815

An integer overflow error within the "parseqt" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file...

CVE-2018-5812

An error within the "nikoncoolscanloadraw" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to trigger a NULL pointer dereference...

CVE-2018-5815

An integer overflow error within the "parseqt" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file...