CVE-2020-35534

Опубликовано: 26 апр. 2020

Источник: redhat

CVSS3: 5.5

Описание

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

A vulnerability was found in LibRaw. There is memory corruption within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	libraw1394	Out of support scope
Red Hat Enterprise Linux 7	LibRaw	Out of support scope
Red Hat Enterprise Linux 7	libraw1394	Out of support scope
Red Hat Enterprise Linux 8	LibRaw	Fix deferred
Red Hat Enterprise Linux 8	libraw1394	Not affected
Red Hat Enterprise Linux 8	libreoffice:flatpak/libraw1394	Not affected
Red Hat Enterprise Linux 9	LibRaw	Not affected
Red Hat Enterprise Linux 9	libreoffice:flatpak/libraw1394	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=2122360LibRaw: Memory corruption in "crxFreeSubbandData()" function

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-35534

CVSS3: 5.5

ubuntu

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

CVE-2020-35534

CVSS3: 5.5

nvd

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

CVE-2020-35534

CVSS3: 5.5

debian

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxF ...

GHSA-x25w-vrh8-84v4

CVSS3: 5.5

github

больше 3 лет назад

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

5.5 Medium

CVSS3