1805 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-16910
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the LibRaw::xtransinterpolate function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.6 can be exploited to cause an invalid read...
Linux Distros Unpatched Vulnerability : CVE-2017-14608
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker...
Linux Distros Unpatched Vulnerability : CVE-2020-35534
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibRaw, there is a memory corruption vulnerability within the crxFreeSubbandData function libraw\src\decoders\crx.cpp when processing cr3 files. CVE-2020-355...
Linux Distros Unpatched Vulnerability : CVE-2017-6887
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A boundary error within the parsetiffifd function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e....
Linux Distros Unpatched Vulnerability : CVE-2018-5806
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the leafhdrloadraw function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.8 can be exploited to trigger a NULL pointer dereference...
Linux Distros Unpatched Vulnerability : CVE-2018-5801
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the LibRaw::unpack function src/librawcxx.cpp in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference...
Linux Distros Unpatched Vulnerability : CVE-2018-10528
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibRaw 0.18.9. There is a stack-based buffer overflow in the utf2char function in librawcxx.cpp. CVE-2018-10528 Note that Nessus reli...
Linux Distros Unpatched Vulnerability : CVE-2020-22628
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in LibRaw::stretch function in libraw\src\postprocessing\aspectratio.cpp. CVE-2020-22628 Note that Nessus relies on the presence o...
Linux Distros Unpatched Vulnerability : CVE-2018-5800
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An off-by-one error within the LibRaw::kodakycbcrloadraw function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.7 can be exploited to cause a...
Linux Distros Unpatched Vulnerability : CVE-2017-16909
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error related to the LibRaw::panasonicloadraw function dcrawcommon.cpp in LibRaw versions prior to 0.18.6 can be exploited to cause a heap-based buffer...
USN-7266-1 digikam vulnerabilities
Zinuo Han and Ao Wang discovered that the Android DNG SDK, vendored in digiKam, did not correctly parse certain files. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2017-0691 It was...
CVE-2021-32142 affecting package LibRaw for versions less than 0.21.3-1
CVE-2021-32142 affecting package LibRaw for versions less than 0.21.3-1. An upgraded version of the package is available that resolves this issue...
Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRaw_buffer_datastream::gets(char*, int) in /src/libraw/src/libraw_datastream.cpp.
...
OSV-2022-1292 Heap-buffer-overflow in LibRaw::phase_one_correct
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=394920636 Crash type: Heap-buffer-overflow READ 2 Crash state: LibRaw::phaseonecorrect LibRaw::raw2imageex LibRaw::dcrawprocess...
PT-2025-9876 · Libraw · Libraw
Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash occurs in the LibRaw::phase one correct function, which is called by LibRaw::raw2image ex and LibRaw::dcraw process...
Debian dla-3113 : libraw-bin - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3113 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3113-1 [email protected]...
RHSA-2024:2137 Red Hat Security Advisory: LibRaw security update
Bulletin has no description...
RHSA-2024:2994 Red Hat Security Advisory: LibRaw security update
Bulletin has no description...
RHSA-2024:0343 Red Hat Security Advisory: LibRaw security update
Bulletin has no description...
RHSA-2023:6343 Red Hat Security Advisory: LibRaw security update
Bulletin has no description...