Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:4299-1

Опубликовано: 28 дек. 2018
Источник: suse-cvrf

Описание

Security update for libraw

This update for libraw fixes the following issues:

The following security vulnerabilities were addressed:

  • CVE-2018-5804: Fixed a type confusion error within the identify function that could trigger a division by zero, leading to a denial of service (Dos). (boo#1097975)
  • CVE-2018-5805: Fixed a boundary error within the quicktake_100_load_raw function that could cause a stack-based buffer overflow and subsequently trigger a crash. (boo#1097973)
  • CVE-2018-5806: Fixed an error within the leaf_hdr_load_raw function that could trigger a NULL pointer deference, leading to a denial of service (DoS). (boo#1097974)
  • CVE-2018-5808: Fixed an error within the find_green function that could cause a stack-based buffer overflow and subsequently execute arbitrary code. (boo#1118894)
  • CVE-2018-5816: Fixed a type confusion error within the identify function that could trigger a division by zero, leading to a denial of service (DoS). (boo#1097975)

Список пакетов

openSUSE Leap 42.3
libraw-0.17.1-26.1
libraw-devel-0.17.1-26.1
libraw-devel-static-0.17.1-26.1
libraw-tools-0.17.1-26.1
libraw15-0.17.1-26.1

Ссылки

Описание

A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero.

Затронутые продукты
openSUSE Leap 42.3:libraw-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-static-0.17.1-26.1
openSUSE Leap 42.3:libraw-tools-0.17.1-26.1
Ссылки

Описание

A boundary error within the "quicktake_100_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to cause a stack-based buffer overflow and subsequently cause a crash.

Затронутые продукты
openSUSE Leap 42.3:libraw-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-static-0.17.1-26.1
openSUSE Leap 42.3:libraw-tools-0.17.1-26.1
Ссылки

Описание

An error within the "leaf_hdr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a NULL pointer dereference.

Затронутые продукты
openSUSE Leap 42.3:libraw-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-static-0.17.1-26.1
openSUSE Leap 42.3:libraw-tools-0.17.1-26.1
Ссылки

Описание

An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.

Затронутые продукты
openSUSE Leap 42.3:libraw-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-static-0.17.1-26.1
openSUSE Leap 42.3:libraw-tools-0.17.1-26.1
Ссылки

Описание

An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file (Note: This vulnerability is caused due to an incomplete fix of CVE-2018-5804).

Затронутые продукты
openSUSE Leap 42.3:libraw-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-0.17.1-26.1
openSUSE Leap 42.3:libraw-devel-static-0.17.1-26.1
openSUSE Leap 42.3:libraw-tools-0.17.1-26.1
Ссылки