Описание
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations.
A flaw was found in LibRaw. In affected versions, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for tag 0x412 processing. This issue is related to large w0 or w1 values or the frac and mult calculations.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | libraw1394 | Fix deferred | ||
| Red Hat Enterprise Linux 7 | LibRaw | Fix deferred | ||
| Red Hat Enterprise Linux 7 | libraw1394 | Fix deferred | ||
| Red Hat Enterprise Linux 8 | LibRaw | Fix deferred | ||
| Red Hat Enterprise Linux 8 | libraw1394 | Fix deferred | ||
| Red Hat Enterprise Linux 9 | LibRaw | Fix deferred |
Показывать по
Дополнительная информация
Статус:
2.9 Low
CVSS3
Связанные уязвимости
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations.
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations.
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cp ...
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations.
2.9 Low
CVSS3