OSV-2022-1003 Index-out-of-bounds in LibRaw::ahd_interpolate_r_and_b_in_rgb_and_convert_to_cielab

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51965 Crash type: Index-out-of-bounds Crash state: LibRaw::ahdinterpolaterandbinrgbandconverttocielab LibRaw::ahdinterpolate LibRaw::dcrawprocess...

PT-2022-36656 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to an index-out-of-bounds crash. Technical details about the crash include the function names ahd interpolate r and b in rgb and convert to cielab, ahd interpolate, and...

The vulnerability of the dcraw/dcraw.c component of the LibRaw image processing library, which allows a hacker to cause a service failure.

The vulnerability of the dcraw/dcraw.c component in the LibRaw image processing library is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created file...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library relates to reading data beyond the permissible buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the internal/dcraw_common.cpp component of the LibRaw image processing library, which involves reading data beyond the permissible buffer limits, allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library relates to reading data beyond the permissible buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library is related to the lack of checks for division by zero. Exploiting this vulnerability allows a remote attacker to cause a service failure...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to cause a service failure...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library is related to reading data beyond the permissible buffer size. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

OSV-2022-934 Index-out-of-bounds in LibRaw::parse_tiff_ifd

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51657 Crash type: Index-out-of-bounds Crash state: LibRaw::parsetiffifd LibRaw::parsetiff LibRaw::identify...

The vulnerability in the `src/libraw_cxx.cpp` component of the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the src/librawcxx.cpp component in the LibRaw image processing library is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker who operates remotely to cause service interruptions...

The vulnerability of the rollei_load_raw() function in the internal/dcraw_common.cpp component of the LibRaw image processing library allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the rolleiloadraw function in the internal/dcrawcommon.cpp component of the LibRaw image processing library is related to writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and caus...

The vulnerability of the leaf_hdr_load_raw() function in the internal/dcraw_common.cpp component of the LibRaw image processing library allows a hacker to cause a service failure.

The vulnerability of the leafhdrloadraw function in the internal/dcrawcommon.cpp component of the LibRaw image processing library is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the Nikon_coolscan_load_raw() function in the internal/dcraw_common.cpp component of the LibRaw image processing library, which allows a hacker to trigger a service failure.

The vulnerability of the nikoncoolscanloadraw function in the internal/dcrawcommon.cpp component of the LibRaw image processing library is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library is related to reading data beyond the permissible buffer size. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

PT-2022-37297 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to an index-out-of-bounds crash. Technical details about the crash include the parse tiff ifd function, the parse tiff function, and the identify function...

Debian: Security Advisory (DLA-3113-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3113-1] libraw security update

Debian LTS Advisory DLA-3113-1 [email protected] https://www.debian.org/lts/security/ Helmut Grohne September 16, 2022 https://wiki.debian.org/LTS Package : libraw Version : 0.19.2-2+deb10u1 CVE ID : CVE-2020-35530 CVE-2020-35531 CVE-2020-35532 CVE-2020-35533 Multiple file parsing...

DLA-3113-1 libraw - security update

Bulletin has no description...

Libraw has an unspecified vulnerability

Libraw is a C library for processing RAW CRW/CR2,NEF,RAF,DNG,andothers format images from Libraw, which supports various operating systems. libraw has a security vulnerability that stems from a memory corruption in the crxFreeSubbandData function when processing cr3 files. No detailed vulnerabili...

OSV-2022-819 Use-of-uninitialized-value in init_main_qtable

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50835 Crash type: Use-of-uninitialized-value Crash state: initmainqtable LibRaw::fujidecodestrip LibRaw::fujidecodeloop...