EPSS
Percentile
65.7%
libraw.so is vulnerable to denial of service (DoS) attacks. A malicious user can pass a RAW file to the identify function in dcraw_common.cpp to cause a type confusion error that can crash the application.
identify
dcraw_common.cpp
bugzilla.redhat.com/show_bug.cgi?id=1591879
github.com/LibRaw/LibRaw/commit/9f26ce37f5be86ea11bfc6831366558650b1f6ff
secuniaresearch.flexerasoftware.com/secunia_research/2018-03