Описание
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
A vulnerability was found in LibRaw. An out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp), which can be triggered via an image with a large row_stride field.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | libraw1394 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | LibRaw | Out of support scope | ||
| Red Hat Enterprise Linux 7 | libraw1394 | Out of support scope | ||
| Red Hat Enterprise Linux 8 | LibRaw | Not affected | ||
| Red Hat Enterprise Linux 8 | libraw1394 | Not affected | ||
| Red Hat Enterprise Linux 8 | libreoffice:flatpak/libraw1394 | Not affected | ||
| Red Hat Enterprise Linux 9 | LibRaw | Not affected | ||
| Red Hat Enterprise Linux 9 | libreoffice:flatpak/libraw1394 | Not affected |
Показывать по
Дополнительная информация
Статус:
5.5 Medium
CVSS3
Связанные уязвимости
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
In LibRaw, an out-of-bounds read vulnerability exists within the "simp ...
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
Уязвимость компонента x3f_utils_patched.cpp библиотеки для обработки изображений LibRaw, позволяющая нарушителю вызвать отказ в обслуживании
5.5 Medium
CVSS3