CVE-2023-1729

Опубликовано: 15 мая 2023

Источник: debian

EPSS Низкий

Описание

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

Пакет	Статус	Версия исправления	Релиз	Тип
libraw	fixed	0.20.2-2.1		package

https://bugzilla.redhat.com/show_bug.cgi?id=2188240
https://github.com/LibRaw/LibRaw/issues/557
Fixed by: https://github.com/LibRaw/LibRaw/commit/9ab70f6dca19229cb5caad7cc31af4e7501bac93 (master)
Fixed by: https://github.com/LibRaw/LibRaw/commit/477e0719ffc07190c89b4f3d12d51b1292e75828 (0.21-stable)

EPSS

Процентиль: 20%

0.00063

Низкий

CVE-2023-1729

CVSS3: 6.5

ubuntu

больше 2 лет назад

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

CVE-2023-1729

CVSS3: 3.3

redhat

больше 2 лет назад

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

CVE-2023-1729

CVSS3: 6.5

nvd

больше 2 лет назад

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

SUSE-SU-2023:2196-1

suse-cvrf

больше 2 лет назад

Security update for libraw

SUSE-SU-2023:2195-1

suse-cvrf

больше 2 лет назад

Security update for libraw

EPSS

Процентиль: 20%

0.00063

Низкий