ALT-PU-2018-1857-1
Closed vulnerabilities
Modified: 2024-11-21
CVE-2018-19565
A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.
Modified: 2024-11-21
CVE-2018-19566
A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.
Modified: 2024-11-21
CVE-2018-19567
A floating point exception in parse_tiff_ifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.
Modified: 2024-11-21
CVE-2018-19568
A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.
Modified: 2024-11-21
CVE-2018-19655
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890086
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890086
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906529
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906529
- FEDORA-2020-545493aa4b
- FEDORA-2020-545493aa4b
- FEDORA-2020-ef1ff20b59
- FEDORA-2020-ef1ff20b59
- FEDORA-2020-19c7f8e25f
- FEDORA-2020-19c7f8e25f