Out-of-Bounds Read

libRaw is vulnerable to out-of-bounds reads. The vulnerability is within the simpledecoderow function of x3futilspatched.cpp which can be triggered via an image with a large rowstride field causing an application crash...

Out-of-Bounds Read

libRaw is vulnerable to out-of-bounds reads. The vulnerability is within the LibRaw::adobecopypixel function of dng.cpp when reading data from the image file causing an application crash...

Out-of-Bounds Read

libRaw is vulnerable to out-of-bounds reads. The vulnerability is within the newnode function of x3futilspatched.cpp which can be triggered via a crafted X3F file causing an application crash...

Out-of-Bounds Read

libRaw is vulnerable to out-of-bounds reads. The vulnerability is within the gethuffmandiff function of x3futilspatched.cpp when reading data from an image file causing an application crash...

OSV-2022-1122 Heap-buffer-overflow in LibRaw::phase_one_correct

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52887 Crash type: Heap-buffer-overflow READ 4 Crash state: LibRaw::phaseonecorrect LibRaw::raw2imageex LibRaw::dcrawprocess...

PT-2022-36732 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the LibRaw::phase one correct, LibRaw::raw2image ex, and LibRaw::dcraw process functions...

OSV-2022-1107 Heap-buffer-overflow in LibRaw::kodak_rgb_load_raw

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52802 Crash type: Heap-buffer-overflow WRITE 2 Crash state: LibRaw::kodakrgbloadraw LibRaw::kodakthumbloader LibRaw::unpackthumb...

PT-2022-36718 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a heap buffer overflow, which occurs when writing data. The crash is associated with the kodak rgb load raw, kodak thumb loader, and unpack thumb functions in LibRaw...

OSV-2022-1104 Stack-buffer-overflow in LibRaw::xtrans_interpolate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52775 Crash type: Stack-buffer-overflow WRITE 4 Crash state: LibRaw::xtransinterpolate LibRaw::dcrawprocess RAWHandler::read...

PT-2022-36716 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a stack-buffer-overflow error. Technical details about the error include the function names xtrans interpolate and dcraw process, which are part of the LibRaw library...

OSV-2022-1093 Heap-buffer-overflow in LibRaw::kodak_rgb_load_raw

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52672 Crash type: Heap-buffer-overflow WRITE 2 Crash state: LibRaw::kodakrgbloadraw LibRaw::kodakthumbloader LibRaw::unpackthumb...

PT-2022-36708 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a heap-buffer-overflow error, specifically a WRITE 2 crash type. The crash occurs in the LibRaw::kodak rgb load raw function, which is called by LibRaw::kodak thumb...

OSV-2022-1078 Heap-buffer-overflow in LibRaw_buffer_datastream::read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52579 Crash type: Heap-buffer-overflow WRITE 6 Crash state: LibRawbufferdatastream::read LibRaw::readshorts LibRaw::kodakthumbloadraw...

PT-2022-36699 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a heap buffer overflow error. Technical details indicate that the crash occurs in the LibRaw buffer datastream::read function, which is called by LibRaw::read shorts...

OSV-2022-1060 UNKNOWN READ in LibRaw::sget4

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52475 Crash type: UNKNOWN READ Crash state: LibRaw::sget4 LibRaw::parseAdobeRAFMakernote LibRaw::parsetiffifd...

OSV-2022-1018 Index-out-of-bounds in LibRaw::kodak_radc_load_raw

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52139 Crash type: Index-out-of-bounds Crash state: LibRaw::kodakradcloadraw LibRaw::unpack LoadRAW...

PT-2022-36665 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to an index-out-of-bounds crash. Technical details about the crash include the function names kodak radc load raw and unpack within the LibRaw library, which is involved...

The vulnerability of the dcraw_common.cpp component in the LibRaw image processing library allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the dcrawcommon.cpp component in the LibRaw image processing library is related to the output of operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, an...

The vulnerability of the `kodak_radc_load_raw` function in the `dcraw_common.cpp` component of the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the kodakradcloadraw function in the dcrawcommon.cpp component of the LibRaw image processing library is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created POC file...

The vulnerability of the LibRaw::copy_bayer function in the libraw_cxx.cpp component of the LibRaw image processing library allows a attacker to cause a service failure.

The vulnerability of the LibRaw::copybayer function in the librawcxx.cpp component of the LibRaw image processing library is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker to cause service failures...