CVE-2020-35532

In LibRaw, an out-of-bounds read vulnerability exists within the "simpledecoderow" function libraw\src\x3f\x3futilspatched.cpp which can be triggered via an image with a large rowstride field...

PT-2022-8938 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is an out-of-bounds read vulnerability within the LibRaw::parseSonySRF function when processing srf files. This occurs in the file librawsrcmetadatasony.cpp. Recommendations: At th...

PT-2022-6944 · Libraw +3 · Libraw +3

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to an out-of-bounds read that can occur within the simple decode row function, specifically in the x3f utils patched.cpp component of the LibRaw image processing library...

Libraw 缓冲区错误漏洞

Libraw is a C++ library from Libraw Inc. for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images on various operating systems. A security vulnerability exists in Libraw, which is caused by an out-of-bounds write in the gethuffmandiff function...

Libraw 安全漏洞

Libraw is a C library for processing RAW CRW/CR2,NEF,RAF,DNG,andothers format images from Libraw, which supports various operating systems. libraw has a security vulnerability that stems from a memory corruption in the crxFreeSubbandData function when processing cr3 files. No detailed vulnerabili...

Libraw 缓冲区错误漏洞

Libraw is a C++ library from Libraw Inc. for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images on various operating systems. A security vulnerability exists in Libraw, which originates from an out-of-bounds read in the parseSonySRF function when processing srf files...

PT-2022-8937 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a memory corruption problem in the crxFreeSubbandData function, located in librawsrcdecoderscrx.cpp, which occurs when processing cr3 files. Recommendations: At the...

Libraw 缓冲区错误漏洞

Libraw is a C++ library from Libraw for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images, supporting various operating systems. A security vulnerability exists in Libraw, which stems from an out-of-bounds write in the simpledecoderow function that can be triggered by images with lar...

Libraw 缓冲区错误漏洞

Libraw is a C++ library from Libraw Inc. for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images on various operating systems. A security vulnerability exists in Libraw, which is caused by an out-of-bounds write in the "newnode" function...

CVE-2020-35534

A vulnerability was found in LibRaw. There is memory corruption within the "crxFreeSubbandData" function libraw\src\decoders\crx.cpp when processing cr3 files...

CVE-2020-35535

A vulnerability was found in LibRaw. There is an out-of-bounds read within the "LibRaw::parseSonySRF" function libraw\src\metadata\sony.cpp when processing srf files...

CVE-2020-35533

A vulnerability was found in LibRaw. An out-of-bounds read vulnerability exists within the "LibRaw::adobecopypixel" function libraw\src\decoders\dng.cpp when reading data from the image file...

CVE-2020-35532

A vulnerability was found in LibRaw. An out-of-bounds read vulnerability exists within the "simpledecoderow" function libraw\src\x3f\x3futilspatched.cpp, which can be triggered via an image with a large rowstride field...

CVE-2020-35531

A vulnerability was found in LibRaw. An out-of-bounds read vulnerability exists within the gethuffmandiff function libraw\src\x3f\x3futilspatched.cpp when reading data from an image file...

CVE-2020-35530

A vulnerability was found in LibRaw. An out-of-bounds write vulnerability within the "newnode" function libraw\src\x3f\x3futilspatched.cpp can be triggered via a crafted X3F file...

LibRaw: Stack buffer overread

Background LibRaw is a library for reading RAW files obtained from digital photo cameras. Description LibRaw incorrectly handles parsing DNG fields in some cases, potentially resulting in a buffer overread leading to denial of service. Impact An attacker capable of providing crafted input to LibR...

GLSA-202208-07 : LibRaw: Stack buffer overread

The remote host is affected by the vulnerability described in GLSA-202208-07 LibRaw: Stack buffer overread - Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp. CVE-2020-24870 Note that Nessus has not tested for this issue but has instead relied...

new packages: LibRaw

An update is available for LibRaw. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.0...

Mageia: Security Advisory (MGASA-2022-0160)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2022-0160 Updated dcraw packages fix security vulnerability

A buffer over-read in cropmaskedpixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information. CVE-2018-19565 A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by...