CVE-2020-35534

Опубликовано: 01 сент. 2022

Источник: debian

Описание

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libraw	fixed	0.20.0-4		package
libraw	not-affected		buster	package
libraw	not-affected		stretch	package

Примечания

https://github.com/LibRaw/LibRaw/commit/e41f331e90b383e3208cefb74e006df44bf3a4b8 (0.20-RC2)
https://github.com/LibRaw/LibRaw/issues/279

Связанные уязвимости

CVE-2020-35534

CVSS3: 5.5

ubuntu

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

CVE-2020-35534

CVSS3: 5.5

redhat

почти 6 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

CVE-2020-35534

CVSS3: 5.5

nvd

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

GHSA-x25w-vrh8-84v4

CVSS3: 5.5

github

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.