Описание
Security update for libraw
This update for libraw fixes the following issues:
- CVE-2023-1729: Fixed a heap buffer overflow when converting an image (bsc#1210720).
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15 SP4
libraw20-0.20.2-150400.3.6.1
SUSE Linux Enterprise Workstation Extension 15 SP4
libraw-devel-0.20.2-150400.3.6.1
openSUSE Leap 15.4
libraw-devel-0.20.2-150400.3.6.1
libraw-devel-static-0.20.2-150400.3.6.1
libraw-tools-0.20.2-150400.3.6.1
libraw20-0.20.2-150400.3.6.1
libraw20-32bit-0.20.2-150400.3.6.1
Ссылки
- Link for SUSE-SU-2023:2194-1
- E-Mail link for SUSE-SU-2023:2194-1
- SUSE Security Ratings
- SUSE Bug 1210720
- SUSE CVE CVE-2023-1729 page
Описание
A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP4:libraw20-0.20.2-150400.3.6.1
SUSE Linux Enterprise Workstation Extension 15 SP4:libraw-devel-0.20.2-150400.3.6.1
openSUSE Leap 15.4:libraw-devel-0.20.2-150400.3.6.1
openSUSE Leap 15.4:libraw-devel-static-0.20.2-150400.3.6.1
Ссылки
- CVE-2023-1729
- SUSE Bug 1210720