Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-19565

Опубликовано: 26 нояб. 2018
Источник: debian

Описание

A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
dcrawunfixedpackage

Примечания

  • https://www.openwall.com/lists/oss-security/2018/11/23/1

  • No security impact, crash in CLI tool

Связанные уязвимости

ubuntu логотип

CVE-2018-19565

CVSS3: 7.1
ubuntu
около 7 лет назад

A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.

redhat логотип

CVE-2018-19565

CVSS3: 4.4
redhat
около 7 лет назад

A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.

nvd логотип

CVE-2018-19565

CVSS3: 7.1
nvd
около 7 лет назад

A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.

github логотип

GHSA-682q-f6x6-8x24

CVSS3: 7.1
github
больше 3 лет назад

A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.

suse-cvrf логотип

SUSE-SU-2022:1749-1

suse-cvrf
больше 3 лет назад

Security update for dcraw