Описание
A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero.
Отчет
This issue did not affect the versions of LibRaw as shipped with Red Hat Enterprise Linux 7 as they did not include the vulnerable code. This issue did not affect the versions of dcraw as shipped with Red Hat Enterprise Linux 5, 6 and 7 as they did not include the vulnerable code. This issue did not affect the versions of libkdcraw as shipped with Red Hat Enterprise Linux 7 as they did not include the vulnerable code.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | dcraw | Not affected | ||
| Red Hat Enterprise Linux 6 | dcraw | Not affected | ||
| Red Hat Enterprise Linux 7 | dcraw | Not affected | ||
| Red Hat Enterprise Linux 7 | libkdcraw | Not affected | ||
| Red Hat Enterprise Linux 7 | LibRaw | Not affected | ||
| Red Hat Enterprise Linux 8 | dcraw | Not affected | ||
| Red Hat Enterprise Linux 8 | LibRaw | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
3.3 Low
CVSS3
Связанные уязвимости
A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero.
A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero.
A type confusion error within the "identify()" function (internal/dcra ...
A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero.
Уязвимость компонента internal/dcraw_common.cpp библиотеки для обработки изображений LibRaw, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
3.3 Low
CVSS3