openSUSE: Security Advisory for libraw (SUSE-SU-2023:3966-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 9 : LibRaw-0.21.1-1.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the LibRaw-0.21.1-1.el9 build changelog. - A flaw was found in LibRaw. A heap-buffer-overflow in raw2imageex caused by a maliciously crafted file may lead to an application crash...

CentOS 9 : LibRaw-0.20.2-6.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the LibRaw-0.20.2-6.el9 build changelog. - Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRawbufferdatastream::getschar, int in...

Advisory ROSA-SA-2024-2350

Software: LibRaw 0.19.4 OS: rosa-server79 packageevrstring: LibRaw-0.19.4-2.res7 CVE-ID: CVE-2021-32142 BDU-ID: 2023-03833 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the LibRawbufferdatastream::gets function of the src/librawdatastream.cpp component of the LibRaw image processing library is...

LibRaw security update

CentOS Errata and Security Advisory CESA-2024:0343 An update for LibRaw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CentOS 7 : LibRaw (RHSA-2024:0343)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0343 advisory. - Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRawbufferdatastream::getschar, int in...

RHEL 7 : LibRaw (RHSA-2024:0343)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0343 advisory. LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: stack buffe...

Moderate: Red Hat Security Advisory: LibRaw security update

An update for LibRaw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

LibRaw: stack buffer overflow in LibRaw_buffer_datastream::gets() in src/libraw_datastream.cpp

A flaw was found in the LibRaw package. A stack buffer overflow in the LibRawbufferdatastream::gets function in src/librawdatastream.cpp caused by a maliciously crafted file may result in compromised confidentiality and integrity and an application crash...

Oracle Linux 7 : LibRaw (ELSA-2024-0343)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0343 advisory. - Fix CVE-2021-32142 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

LibRaw security update

0.19.4-2 - Fix CVE-2021-32142 - Resolves: RHEL-9524...

EulerOS 2.0 SP8 : LibRaw (EulerOS-SA-2023-3134)

According to the versions of the LibRaw package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in LibRaw. A heap-buffer-overflow in raw2imageex caused by a maliciously crafted file may lead to an application crash...

Buffer Overflow

LibRaw is vulnerable to Buffer Overflow. The vulnerability is due to improper size checks of the len variable in the jpegstart function within dcraw. This issue can be exploited by an attacker via a maliciously crafted raw image resulting in Denial of Service...

LibRaw: Heap Buffer Overflow

Background LibRaw is a library for reading RAW files obtained from digital photo cameras. Description A vulnerability has been discovered in LibRaw. Please review the CVE identifier referenced below for details. Impact A heap-buffer-overflow in raw2imageex caused by a maliciously crafted file may...

GLSA-202312-08 : LibRaw: Heap Buffer Overflow

The remote host is affected by the vulnerability described in GLSA-202312-08 LibRaw: Heap Buffer Overflow - A flaw was found in LibRaw. A heap-buffer-overflow in raw2imageex caused by a maliciously crafted file may lead to an application crash. CVE-2023-1729 Note that Nessus has not tested for th...

OSV-2023-1295 Global-buffer-overflow in libraw_tagtype_dataunit_bytes

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65027 Crash type: Global-buffer-overflow READ 4 Crash state: librawtagtypedataunitbytes checkedbuffert::tiffsget LibRaw::parseSonySR2...

PT-2023-35637 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a global buffer overflow read error. Technical details about the crash include the libraw tagtype dataunit bytes function, checked buffer t::tiff sget function, and...

Oracle Linux 9 : LibRaw (ELSA-2023-6343)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6343 advisory. 0.20.2-6 - Fix CVE-2021-32142 Resolves: 2172140 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

The vulnerability of the libraw_cxx.cpp component in the LibRaw image processing library allows a intruder to trigger a service failure.

The vulnerability of the librawcxx.cpp component in the LibRaw image processing library is related to pointer dereferencing errors. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library is related to writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...