CVE-2026-24808

Опубликовано: 27 янв. 2026

Источник: debian

EPSS Низкий

Описание

Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc. This issue affects RawTherapee: through 5.11.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
rawtherapee	fixed	5.12-1		package

Примечания

https://github.com/RawTherapee/RawTherapee/pull/7359
Fixed by: https://github.com/RawTherapee/RawTherapee/commit/e86bc3f638f8db3ac7b2d1d12df6ee38155788e7 (5.12-rc1)
Crash in CLI tool, no security impact

EPSS

Процентиль: 5%

0.0002

Низкий

Связанные уязвимости

CVE-2026-24808

ubuntu

2 месяца назад

Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc. This issue affects RawTherapee: through 5.11.

CVE-2026-24808

nvd

2 месяца назад

Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc. This issue affects RawTherapee: through 5.11.

GHSA-v546-jrfg-ph8q

github

2 месяца назад

Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc. This issue affects RawTherapee: through 5.11.

EPSS

Процентиль: 5%

0.0002

Низкий