Описание
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dcraw | fixed | 9.26-1 | package | |
| dcraw | no-dsa | jessie | package | |
| dcraw | no-dsa | wheezy | package | |
| dcraw | no-dsa | squeeze | package | |
| ufraw | fixed | 0.20-3 | package | |
| ufraw | fixed | 0.20-2+deb8u1 | jessie | package |
| ufraw | no-dsa | wheezy | package | |
| ufraw | no-dsa | squeeze | package | |
| libraw | fixed | 0.16.2-1 | package | |
| libraw | fixed | 0.16.0-9+deb8u1 | jessie | package |
| libraw | fixed | 0.14.6-2+deb7u1 | wheezy | package |
| libraw | no-dsa | squeeze | package | |
| rawtherapee | fixed | 4.2-2 | package | |
| rawtherapee | fixed | 4.2-1+deb8u1 | jessie | package |
| rawtherapee | fixed | 4.0.9-4+deb7u1 | wheezy | package |
| rawtherapee | no-dsa | squeeze | package | |
| rawstudio | removed | package | ||
| rawstudio | no-dsa | wheezy | package | |
| rawstudio | no-dsa | squeeze | package | |
| xbmc | fixed | 2:13.2+dfsg1-5 | package | |
| xbmc | no-dsa | jessie | package | |
| xbmc | no-dsa | wheezy | package | |
| kodi | fixed | 16.0+dfsg1-1 | package | |
| exactimage | fixed | 0.9.1-5 | package | |
| exactimage | fixed | 0.8.9-7+deb8u1 | jessie | package |
| exactimage | fixed | 0.8.5-5+deb7u4 | wheezy | package |
| exactimage | no-dsa | squeeze | package | |
| freeimage | fixed | 3.15.4-6 | package | |
| freeimage | no-dsa | wheezy | package | |
| freeimage | no-dsa | squeeze | package | |
| darktable | fixed | 1.6.7-1 | package | |
| darktable | fixed | 1.4.2-1+deb8u1 | jessie | package |
| darktable | no-dsa | wheezy | package |
Примечания
http://www.ocert.org/advisories/ocert-2015-006.html
https://codesearch.debian.net/results/int%20CLASS%20ljpeg_start
Starting with 2:13.2+dfsg1-5 xbmc is a transitional package
EPSS
Связанные уязвимости
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
EPSS