CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

DEBIAN-CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

UBUNTU-CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

Stack overflow

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

CVE-2020-24870

CVE-2020-24870 affects LibRaw: a stack-based buffer overflow in LibRaw::identify_process_dng_fields (identify.cpp). Public details confirm the vulnerability in LibRaw prior to version 0.20.1. Impact per connected advisory notes potential code execution or crash. Remediation/fix: upgrade LibRaw to...

CVE-2020-24870

Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identifyprocessdngfields in identify.cpp...

Libraw 缓冲区错误漏洞

LibRaw is a library for reading RAW files acquired from digital cameras. A stack buffer overflow vulnerability exists in LibRaw::identifyprocessdngfields in identify.cpp in versions of LibRaw prior to 0.20.1. No detailed vulnerability details are provided at this time...

Remote Code Execution

libraw is vulnerable to remote code execution. An authenticated user can inject additional commands into normal webapp query...

Denial Of Service (DoS)

libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...

LibRaw suffers from a stack overflow vulnerability

LibRaw is a C++ library for processing RAW CRW/CR2, NEF, RAF, DNG, and others format images, supporting various operating systems. LibRaw suffers from a stack overflow vulnerability that can be exploited to gain control of the server...

PT-2021-7867 · Libraw +8 · Libraw +8

Name of the Vulnerable Software and Affected Versions: LibRaw version 0.20.0 Description: The issue is related to a buffer overflow in the LibRaw buffer datastream::gets function, located in the libraw datastream.cpp component of the LibRaw image processing library. This allows an attacker to...

NewStart CGSL MAIN 6.02 : LibRaw Vulnerability (NS-SA-2021-0063)

The remote NewStart CGSL host, running version MAIN 6.02, has LibRaw packages installed that are affected by a vulnerability: - LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpackthumb.cpp, postprocessing/memimage.cpp, and utils/thumbutils.cpp. For example,...

OSV-2021-427 Heap-buffer-overflow in LibRaw::kodak_c330_load_raw

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31181 Crash type: Heap-buffer-overflow READ 1 Crash state: LibRaw::kodakc330loadraw LibRaw::unpack librawfuzzer.cc...

CVE-2020-24870

A stack buffer overflow vulnerability was found in LibRaw. This flaw allows a malicious user to send a crafted image that, when parsed by an application linked to LibRaw, leads to a denial of service or potential code execution...

OSV-2021-282 Heap-buffer-overflow in LibRaw_buffer_datastream::read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30324 Crash type: Heap-buffer-overflow WRITE Crash state: LibRawbufferdatastream::read LibRaw::uncompressedfpdngloadraw LibRaw::unpack...

CentOS 8 : GNOME (CESA-2020:1766)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1766 advisory. - LibRaw: stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp CVE-2018-20337 - gvfs: mishandling of file ownership in...

Updated rawtherapee package fixes a security vulnerability

There is a floating point exception in dcrawcommon.cpp of libRAW. It will lead to remote denial of service attack. This code is embedded in rawtherapee CVE-2017-13735...