49 matches found
EUVD-2017-15940
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-24890
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code executio...
SUSE CVE-2018-19566
A heap buffer over-read in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information...
SUSE CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
OSV-2022-1060 UNKNOWN READ in LibRaw::sget4
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52475 Crash type: UNKNOWN READ Crash state: LibRaw::sget4 LibRaw::parseAdobeRAFMakernote LibRaw::parsetiffifd...
OSV-2022-934 Index-out-of-bounds in LibRaw::parse_tiff_ifd
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51657 Crash type: Index-out-of-bounds Crash state: LibRaw::parsetiffifd LibRaw::parsetiff LibRaw::identify...
Denial Of Service (DoS)
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
DEBIAN-CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
Null pointer dereference
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
CVE-2020-24890
LibRaw 20.0 contains a null pointer dereference in parse_tiff_ifd (src/metadata/tiff.cpp) that can lead to context-dependent arbitrary code execution. The vulnerability exists when LibRaw is built in a specific way (compile-time conditions). Public sources confirm the issue for LibRaw 20.0 (CVE-2...
CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
CVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parsetiffifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way...
Arbitrary Code Execution
libraw is vulnerable to arbitrary code execution. The vulnerability exists as a boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to...
Arbitrary Code Execution
librawi s vulnerable to arbitrary code execution. The vulnerability exists as an error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to corrupt memory...
freeimage/load_from_memory_fuzzer: Global-buffer-overflow in LibRaw::parse_makernote
Detailed report: https://oss-fuzz.com/testcase?key=5116280533680128 Project: freeimage Fuzzer: libFuzzerfreeimageloadfrommemoryfuzzer Fuzz target binary: loadfrommemoryfuzzer Job Type: libfuzzerasanfreeimage Platform Id: linux Crash Type: Global-buffer-overflow READ 4 Crash Address: 0x000000f331f...
imagemagick/encoder_dng_fuzzer: Global-buffer-overflow in LibRaw::parse_makernote
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5733147803648000 Project: imagemagick Fuzzer: aflimagemagickencoderdngfuzzer Fuzz target binary: encoderdngfuzzer Job Type: aflasanimagemagick Platform Id: linux Crash Type:...
CVE-2018-19567
A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...
CVE-2018-19567
A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...