[SECURITY] Fedora 40 Update: mingw-LibRaw-0.21.4-1.fc40

MinGW Windows LibRaw library...

[SECURITY] Fedora 41 Update: mingw-LibRaw-0.21.4-1.fc41

MinGW Windows LibRaw library...

Fedora 40 : digikam (2025-97687e7f68)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-97687e7f68 advisory. update internal Libraw to 2025/03/17 snapshot Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

Fedora 41 : digikam (2025-5bbbb2df79)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5bbbb2df79 advisory. update internal Libraw to 2025/03/17 snapshot Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

Fedora: Security Advisory (FEDORA-2025-97687e7f68)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 41 : mingw-LibRaw (2025-e7dea91428)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-e7dea91428 advisory. Update to LibRaw 0.21.4. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 40 : mingw-LibRaw (2025-32a9eb17af)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-32a9eb17af advisory. Update to LibRaw 0.21.4. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Debian: Security Advisory (DLA-4142-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 42 Update: mingw-LibRaw-0.21.4-1.fc42

MinGW Windows LibRaw library...

[SECURITY] [DLA 4142-1] libraw security update

Debian LTS Advisory DLA-4142-1 [email protected] https://www.debian.org/lts/security/ Andreas Henriksson April 29, 2025 https://wiki.debian.org/LTS Package : libraw Version : 0.20.2-1+deb11u2 CVE ID : CVE-2025-43961 CVE-2025-43962 CVE-2025-43963 CVE-2025-43964 Debian Bug : 1103781 11037...

Debian dla-4142 : libraw-bin - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4142 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4142-1 [email protected]...

DLA-4142-1 libraw - security update

Bulletin has no description...

SUSE SLES12 Security Update : libraw (SUSE-SU-2025:1380-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1380-1 advisory. - CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phaseonecorrect function bsc1241585 - CVE-2025-43964: Fixed tag 0x412...

SUSE-SU-2025:1380-1 Security update for libraw

This update for libraw fixes the following issues: - CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phaseonecorrect function bsc1241585 - CVE-2025-43964: Fixed tag 0x412 processing in phaseonecorrect does not enforce minimum w0 and w1 values bsc1241584...

Security update for libraw

This update for libraw fixes the following issues: CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phaseonecorrect function bsc1241585 CVE-2025-43964: Fixed tag 0x412 processing in phaseonecorrect does not enforce minimum w0 and w1 values bsc1241584 Patch Instructions: To...

SUSE CVE-2025-43961

In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser...

SUSE CVE-2025-43963

In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp allows out-of-buffer access because splitcol and splitrow values are not checked in 0x041f tag processing...

OPENSUSE-SU-2025:15025-1 libraw-devel-0.21.4-1.1 on GA media

These are all security issues fixed in the libraw-devel-0.21.4-1.1 package on the GA media of openSUSE Tumbleweed...

CLSA-2025-1745427138 LibRaw: Fix of CVE-2021-32142

CVE-2021-32142: fix buffer overflow vulnerability in LibRawbufferdatastream::getschar, int in librawdatastream.cpp...

SUSE CVE-2025-43962

In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations...