Описание
Security update for libraw
This update for libraw fixes the following issues:
-
CVE-2015-3885: A specially crafted raw image file could have caused a Denial of Service through an integer overflow. (bsc#930683)
-
CVE-2015-8367: The function phase_one_correct() did not handle memory object initialization correctly, which may have caused some other problems. (bsc#957517)
-
CVE-2017-6886: memory corruption in parse_tiff_ifd() func (internal/dcraw_common.cpp) could lead to Denial of service (bsc#1039380)
-
CVE-2017-6889: integer overflow error within the 'foveon_load_camf()' function (dcraw_foveon.c) could lead to Denial of service (bsc#1039210)
-
CVE-2017-6890: boundary error within the 'foveon_load_camf()' function (dcraw_foveon.c) (bsc#1039209)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
Ссылки
- Link for SUSE-SU-2017:2300-1
- E-Mail link for SUSE-SU-2017:2300-1
- SUSE Security Ratings
- SUSE Bug 1039209
- SUSE Bug 1039210
- SUSE Bug 1039379
- SUSE Bug 1039380
- SUSE Bug 930683
- SUSE Bug 957517
- SUSE CVE CVE-2015-3885 page
- SUSE CVE CVE-2015-8367 page
- SUSE CVE CVE-2017-6886 page
- SUSE CVE CVE-2017-6887 page
- SUSE CVE CVE-2017-6889 page
- SUSE CVE CVE-2017-6890 page
- SUSE CVE CVE-2017-6899 page
Описание
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
Затронутые продукты
Ссылки
- CVE-2015-3885
- SUSE Bug 930683
Описание
The phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object initialization.
Затронутые продукты
Ссылки
- CVE-2015-8367
- SUSE Bug 1006704
- SUSE Bug 1006717
- SUSE Bug 957517
Описание
An error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to corrupt memory.
Затронутые продукты
Ссылки
- CVE-2017-6886
- SUSE Bug 1039380
Описание
A boundary error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs.
Затронутые продукты
Ссылки
- CVE-2017-6887
- SUSE Bug 1039379
Описание
An integer overflow error within the "foveon_load_camf()" function (dcraw_foveon.c) in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow.
Затронутые продукты
Ссылки
- CVE-2017-6889
- SUSE Bug 1039210
Описание
A boundary error within the "foveon_load_camf()" function (dcraw_foveon.c) when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow.
Затронутые продукты
Ссылки
- CVE-2017-6890
- SUSE Bug 1039209
Описание
The msm_bus_dbg_update_request_write function in drivers/platform/msm/msm_bus/msm_bus_dbg.c in android_kernel_huawei_msm8916 through 2017-06-16 in LineageOS, and possibly other kernels for MSM devices, allows attackers to cause a denial of service (NULL pointer dereference and device crash) via a crafted /sys/kernel/debug/msm-bus-dbg/client-data/update-request write request.
Затронутые продукты
Ссылки
- CVE-2017-6899