1805 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-35530
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw, there is an out-of-bounds write vulnerability within the newnode function libraw\src\x3f\x3futilspatched.cpp that can be triggered via a crafted X3F...
Linux Distros Unpatched Vulnerability : CVE-2020-35532
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw, an out-of-bounds read vulnerability exists within the simpledecoderow function libraw\src\x3f\x3futilspatched.cpp which can be triggered via an image...
Linux Distros Unpatched Vulnerability : CVE-2020-35533
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw, an out-of-bounds read vulnerability exists within the LibRaw::adobecopypixel function libraw\src\decoders\dng.cpp when reading data from the image...
Linux Distros Unpatched Vulnerability : CVE-2025-43964
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values. CVE-2025-43964 Note that...
Linux Distros Unpatched Vulnerability : CVE-2025-43962
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the...
Amazon Linux 2 : LibRaw (ALAS-2025-2974)
The version of LibRaw installed on the remote host is prior to 0.19.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2974 advisory. In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser. CVE-2025-43961 In...
Linux Distros Unpatched Vulnerability : CVE-2025-43963
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp allows out-of-buffer access because splitcol and splitrow values are not checked in 0x041f...
Linux Distros Unpatched Vulnerability : CVE-2025-43961
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser. CVE-2025-43961 Note that Nessus relies on the presence o...
Linux Distros Unpatched Vulnerability : CVE-2020-24870
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp. CVE-2020-24870 Note that Nessus relies on the presence of...
Linux Distros Unpatched Vulnerability : CVE-2018-5815
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow error within the parseqt function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop...
Linux Distros Unpatched Vulnerability : CVE-2018-5807
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the samsungloadraw function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to cause an out-of-bounds read memory...
Linux Distros Unpatched Vulnerability : CVE-2018-5808
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the findgreen function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and...
Advisory ROSA-SA-2025-2942
software: libraw 0.20.2 OS: ROSA-CHROME unaffected versions = libraw-0.20.2-5 affected versions libraw-0.20.2-5 CVE-ID: CVE-2025-43961 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A vulnerability in LibRaw allows an out-of-buffer read in the Fujifilm 0xf00c tag parser. CVE-STATUS: The vulnerability has...
Medium: LibRaw
Issue Overview: In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values, which are used for indexing arrays, and may lead to out of bounds memory access. CVE-2025-43964 Affected Packages: LibRaw Note: This advisory is...
Amazon Linux 2 : LibRaw (ALAS-2025-2954)
The version of LibRaw installed on the remote host is prior to 0.19.4-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2954 advisory. In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1...
CLSA-2025-1753801728 LibRaw: Fix of CVE-2023-1729
CVE-2023-1729: fix heap-buffer-overflow in raw2imageex to prevent application crash...
TencentOS Server 2: LibRaw (TSSA-2024:0028)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0028 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...
TencentOS Server 3: LibRaw (TSSA-2024:0186)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0186 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2025:01569-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01569-1 advisory. - CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp bsc1241643 ...
SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2025:01572-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01572-1 advisory. - CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp bsc1241643 ...