EUVD-2018-17586

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-5819

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the parsesinaria function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

imagemagick:ping_dng_fuzzer: Use-of-uninitialized-value in LibRaw::parse_sinar_ia

Detailed Report: https://oss-fuzz.com/testcase?key=4967658163011584 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: pingdngfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: LibRaw::parsesinaria...

Design/Logic Flaw

An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

CVE-2018-5819

CVE-2018-5819 affects LibRaw prior to 0.19.1, where an issue in parse_sinar_ia() (internal/dcraw_common.cpp) can be exploited to exhaust CPU resources (denial of service). The vulnerability is documented across multiple sources linked to LibRaw versions before 0.19.1, with Debian LTS advisory DLA...

CVE-2018-5819

An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

CVE-2018-5819

An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

CVE-2018-5819

An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

CVE-2018-5819

An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

Denial Of Service (DoS)

libraw.so is vulnerable to denial of service. An infinite loop in the function parsesinaria in internal/dcrawcommon.cpp allows an attacker to cause a denial of service condition in the process...

CVE-2018-5819

An error within the "parsesinaria" function internal/dcrawcommon.cpp within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources...

LibRaw 'parse_sinar_ia()' Function Denial of Service Vulnerability

LibRaw is a C++ library for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A denial of service vulnerability exists in the LibRaw 'parsesinaria' function. An attacker can exploit the vulnerability to cause a DoS Denial of Service...