CVE-2018-19568

Опубликовано: 26 нояб. 2018

Источник: debian

EPSS Низкий

Описание

A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
dcraw	unfixed			package

Примечания

https://www.openwall.com/lists/oss-security/2018/11/23/1
No security impact, crash in CLI tool

EPSS

Процентиль: 38%

0.00165

Низкий

Связанные уязвимости

CVE-2018-19568

CVSS3: 5.5

ubuntu

около 7 лет назад

A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.

CVE-2018-19568

CVSS3: 3.3

redhat

около 7 лет назад

A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.

CVE-2018-19568

CVSS3: 5.5

nvd

около 7 лет назад

A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.

GHSA-j78c-p6vw-qcr3

CVSS3: 5.5

github

больше 3 лет назад

A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.

SUSE-SU-2022:1749-1

suse-cvrf

больше 3 лет назад

Security update for dcraw

EPSS

Процентиль: 38%

0.00165

Низкий