CVE-2018-5809

🗓️ 07 Dec 2018 22:29:00Reported by ubuntu.comType

ubuntucve

ubuntucve🔗 ubuntu.com👁 17 Views

Vulnerability in LibRaw::parse_exif() function

Reporter	Title	Published	Views	Family All 14
CNVD	LibRaw 'LibRaw::parse_exif()' function stack buffer overflow vulnerability	10 Dec 201800:00	–	cnvd
CVE	CVE-2018-5809	7 Dec 201822:00	–	cve
Cvelist	CVE-2018-5809	7 Dec 201822:00	–	cvelist
Debian CVE	CVE-2018-5809	7 Dec 201822:00	–	debiancve
EUVD	EUVD-2018-17576	7 Oct 202500:30	–	euvd
NVD	CVE-2018-5809	7 Dec 201822:29	–	nvd
OSV	DEBIAN-CVE-2018-5809	7 Dec 201822:29	–	osv
OSV	UBUNTU-CVE-2018-5809	7 Dec 201822:29	–	osv
OSV	USN-3838-1 libraw vulnerabilities	6 Dec 201802:25	–	osv
Prion	Stack overflow	7 Dec 201822:29	–	prion

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	18.04	any	kodi	0	kodi_0_any.deb
Ubuntu	20.04	any	kodi	0	kodi_0_any.deb
Ubuntu	22.04	any	kodi	0	kodi_0_any.deb
Ubuntu	24.04	any	kodi	0	kodi_0_any.deb
Ubuntu	25.10	any	kodi	0	kodi_0_any.deb
Ubuntu	26.04	any	kodi	0	kodi_0_any.deb
Ubuntu	20.04	any	rawtherapee	0	rawtherapee_0_any.deb
Ubuntu	22.04	any	rawtherapee	0	rawtherapee_0_any.deb
Ubuntu	24.04	any	rawtherapee	0	rawtherapee_0_any.deb
Ubuntu	25.10	any	rawtherapee	0	rawtherapee_0_any.deb

Source	Link
secuniaresearch	www.secuniaresearch.flexerasoftware.com/secunia_research/2018-9/
github	www.github.com/LibRaw/LibRaw/blob/master/Changelog.txt
secuniaresearch	www.secuniaresearch.flexerasoftware.com/advisories/81800/
ubuntu	www.ubuntu.com/security/notices/USN-3838-1
cve	www.cve.org/CVERecord

11 Jul 2025 07:41Current

7.5High risk

Vulners AI Score7.5

CVSS 26.8

CVSS 38.8

EPSS0.01917

cve-2018-5809 stack-based buffer overflow arbitrary code execution libraw unix