CVE-2017-6886

An error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to corrupt memory...

CVE-2017-6889

An integer overflow error within the "foveonloadcamf" function dcrawfoveon.c in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow...

Integer overflow

An integer overflow error within the "foveonloadcamf" function dcrawfoveon.c in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow...

Stack overflow

A boundary error within the "foveonloadcamf" function dcrawfoveon.c when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow...

CVE-2017-6890

A boundary error within the "foveonloadcamf" function dcrawfoveon.c when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow...

CVE-2017-6890

A boundary error within the "foveonloadcamf" function dcrawfoveon.c when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow...

CVE-2017-6889

An integer overflow error within the "foveonloadcamf" function dcrawfoveon.c in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow...

CVE-2017-6889

An integer overflow error within the "foveonloadcamf" function dcrawfoveon.c in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow...

CVE-2017-6889

An integer overflow error within the "foveonloadcamf" function dcrawfoveon.c in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow...

CVE-2017-6890

A boundary error within the "foveonloadcamf" function dcrawfoveon.c when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow...

CVE-2017-6890

CVE-2017-6890 affects LibRaw-demosaic-pack-GPL2 before 0.18.2. The issue is a boundary error in foveon_load_camf() (dcraw_foveon.c) when initializing a Huffman table, which can cause a stack-based buffer overflow. Connected sources confirm fixes in OpenSUSE/SUSE advisories (e.g., openSUSE-2017-64...

CVE-2017-6889

LibRaw-demosaic-pack-GPL2 is affected by CVE-2017-6889 due to an integer/heap overflow in foveon_load_camf() in dcraw_foveon.c, prior to version 0.18.2. The issue is described as a heap-based buffer overflow, with referenced advisories noting potential denial of service. A fix exists in LibRaw 0....

GLSA-201701-60 : LibRaw: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201701-60 LibRaw: Multiple vulnerabilities Multiple vulnerabilities have been discovered in LibRaw. Please review the CVE identifiers referenced below for details. Impact : An attacker could execute arbitrary code, cause a Denial ...

LibRaw: Multiple vulnerabilities

Background LibRaw is a library for reading RAW files obtained from digital photo cameras. Description Multiple vulnerabilities have been discovered in LibRaw. Please review the CVE identifiers referenced below for details. Impact An attacker could execute arbitrary code, cause a Denial of Service...

openSUSE Security Update : libraw (openSUSE-2016-1264)

This update for libraw fixes the following issues : - CVE-2015-8367: Memory objects are not intialized properly boo957517. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2016-1264. T...

Fedora 22 : LibRaw-0.16.2-3.fc22 (2015-a288773b9a)

Patch for CVE-2015-8366, CVE-2015-8367 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 23 : LibRaw-0.16.2-3.fc23 (2015-d2fc332108)

Patch for CVE-2015-8366, CVE-2015-8367 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

openSUSE Security Update : libraw (openSUSE-2015-900)

This update fixes the following security issue : - CVE-2015-8367 - It was found that phaseonecorrect function does not handle memory objects initialization correctly, which may have unspecified impact bsc957517. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] Fedora 22 Update: LibRaw-0.16.2-3.fc22

LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future...

Mageia: Security Advisory (MGASA-2015-0469)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...