CVE-2023-1729

Опубликовано: 14 янв. 2023

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	LibRaw	Fix deferred
Red Hat Enterprise Linux 8	LibRaw	Fix deferred
Red Hat Enterprise Linux 9	LibRaw	Fixed	RHSA-2024:2137	30.04.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-119->CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=2188240LibRaw: a heap-buffer-overflow in raw2image_ex()

EPSS

Процентиль: 20%

0.00063

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2023-1729

CVSS3: 6.5

ubuntu

больше 2 лет назад

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

CVE-2023-1729

CVSS3: 6.5

nvd

больше 2 лет назад

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

CVE-2023-1729

CVSS3: 6.5

debian

больше 2 лет назад

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() c ...

SUSE-SU-2023:2196-1

suse-cvrf

больше 2 лет назад

Security update for libraw

SUSE-SU-2023:2195-1

suse-cvrf

больше 2 лет назад

Security update for libraw

EPSS

Процентиль: 20%

0.00063

Низкий

3.3 Low

CVSS3