Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:0133-1

Опубликовано: 21 янв. 2019
Источник: suse-cvrf

Описание

Security update for libraw

This update for libraw fixes the following issues:

Security issues fixed:

  • CVE-2018-20337: Fixed a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp (bsc#1120519)
  • CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of libraw_cxx.cpp (bsc#1120500)
  • CVE-2018-20364: Fixed a NULL pointer dereference in the copy_bayer function of libraw_cxx.cpp (bsc#1120499)
  • CVE-2018-20363: Fixed a NULL pointer dereference in the raw2image function of libraw_cxx.cpp (bsc#1120498)
  • CVE-2018-5817: Fixed an infinite loop in the unpacked_load_raw function of dcraw_common.cpp (bsc#1120515)
  • CVE-2018-5818: Fixed an infinite loop in the parse_rollei function of dcraw_common.cpp (bsc#1120516)
  • CVE-2018-5819: Fixed a denial of service in the parse_sinar_ia function of dcraw_common.cpp (bsc#1120517)

Список пакетов

SUSE Linux Enterprise Workstation Extension 15
libraw-devel-0.18.9-3.8.1
libraw16-0.18.9-3.8.1

Ссылки

Описание

There is a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки

Описание

LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки

Описание

LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки

Описание

LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки

Описание

A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки

Описание

An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки

Описание

An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:libraw-devel-0.18.9-3.8.1
SUSE Linux Enterprise Workstation Extension 15:libraw16-0.18.9-3.8.1
Ссылки
Уязвимость SUSE-SU-2019:0133-1