1805 matches found
SUSE CVE-2018-5813
An error within the "parseminolta" function dcraw/dcraw.c in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file...
SUSE CVE-2018-5815
An integer overflow error within the "parseqt" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file...
SUSE CVE-2018-5816
An integer overflow error within the "identify" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file Note: This vulnerability is caused due to an incomplete fix of CVE-2018-5804...
SUSE CVE-2018-5819
An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...
SUSE CVE-2018-5817
A type confusion error within the "unpackedloadraw" function within LibRaw versions prior to 0.19.1 internal/dcrawcommon.cpp can be exploited to trigger an infinite loop...
SUSE CVE-2018-5818
An error within the "parserollei" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop...
SUSE CVE-2018-10529
An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds read affecting the X3F property table list implementation in librawx3f.cpp and librawcxx.cpp...
SUSE CVE-2018-10528
An issue was discovered in LibRaw 0.18.9. There is a stack-based buffer overflow in the utf2char function in librawcxx.cpp...
SUSE CVE-2018-20337
There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...
SUSE CVE-2018-20363
LibRaw::raw2image in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference...
SUSE CVE-2018-20365
LibRaw::raw2image in librawcxx.cpp has a heap-based buffer overflow...
SUSE CVE-2018-20364
LibRaw::copybayer in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference...
SUSE CVE-2020-15365
LibRaw before 0.20-Beta3 has an out-of-bounds write in parseexif in metadata\exifgps.cpp via an unrecognized AtomName and a zero value of tiffnifds...
SUSE CVE-2020-15503
LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpackthumb.cpp, postprocessing/memimage.cpp, and utils/thumbutils.cpp. For example, mallocsizeoflibrawprocessedimaget+T.tlength occurs without validating T.tlength...
SUSE CVE-2020-24870
Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...
SUSE CVE-2020-24889
A buffer overflow vulnerability in LibRaw version 20.0 LibRaw::GetNormalizedModel in src/metadata/normalizemodel.cpp may lead to context-dependent arbitrary code execution...
SUSE CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
SUSE CVE-2020-35530
In LibRaw, there is an out-of-bounds write vulnerability within the "newnode" function libraw\src\x3f\x3futilspatched.cpp that can be triggered via a crafted X3F file...
SUSE CVE-2020-35533
In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobecopypixel" function libraw\src\decoders\dng.cpp when reading data from the image file...
SUSE CVE-2020-35531
In LibRaw, an out-of-bounds read vulnerability exists within the gethuffmandiff function libraw\src\x3f\x3futilspatched.cpp when reading data from an image file...