Debian DLA-1109-1 : libraw security update

CVE-2017-14608 An out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash. For Debian 7 'Wheezy', these problems have...

Fedora 26 : LibRaw (2017-90500f87f3)

Fix for possible buffer overrun in kodak65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data ---- Patch for CVE-2017-14348 Note that Tenable Network Security has extracted the preceding...

openSUSE Security Update : libraw (openSUSE-2017-1086)

This update for libraw fixes the following issues : - CVE-2017-14348: A specially crafted file could have been used to trigger a heap-based buffer overflow boo1058467 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

[SECURITY] [DLA 1109-1] libraw security update

Package : libraw Version : 0.14.6-2+deb7u3 CVE ID : CVE-2017-14608 CVE-2017-14608 An out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause...

DLA-1109-1 libraw - security update

Bulletin has no description...

[ASA-201709-18] libraw: multiple issues

Arch Linux Security Advisory ASA-201709-18 ========================================== Severity: High Date : 2017-09-22 CVE-ID : CVE-2017-13735 CVE-2017-14265 Package : libraw Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-410 Summary ======= The package libraw before...

Fedora 26 : mingw-LibRaw (2017-7699952c1b)

Update to version 0.18.4, see https://github.com/LibRaw/LibRaw/blob/0.18-stable/Changelog.txt for details. ---- Update to version 0.18.3, see https://www.libraw.org/news/libraw-0-18-3 for details. Note that Tenable Network Security has extracted the preceding description block directly from the...

[SECURITY] Fedora 26 Update: mingw-LibRaw-0.18.4-1.fc26

MinGW Windows LibRaw library...

LibRaw Read-Over-Boundary Vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. An out-of-bounds read vulnerability exists in the dcraw/dcraw.c file and the internal/dcrawcommon.cpp file in LibRaw 0.18.4 and earlier versions. An attacker can exploit this...

Out-of-bounds

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

DEBIAN-CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

CVE-2017-14608

CVE-2017-14608 is reported for LibRaw up to version 0.18.4, where an out-of-bounds read in the kodak_65000_load_raw path (dcraw/dcraw.c and internal/dcraw_common.cpp) could allow an attacker to disclose memory or cause an application crash. Connected documents corroborate LibRaw-related issues ac...

CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

libraw -- Out-of-bounds Read

libraw developers report: In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

UBUNTU-CVE-2017-14608

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

Fedora 25 : LibRaw (2017-c5d7fd07c5)

Patch for CVE-2017-13735. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...