Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2019:0094-1

Опубликовано: 23 мар. 2019
Источник: suse-cvrf

Описание

Security update for libraw

This update for libraw fixes the following issues:

Security issues fixed:

  • CVE-2018-20337: Fixed a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp (bsc#1120519)
  • CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of libraw_cxx.cpp (bsc#1120500)
  • CVE-2018-20364: Fixed a NULL pointer dereference in the copy_bayer function of libraw_cxx.cpp (bsc#1120499)
  • CVE-2018-20363: Fixed a NULL pointer dereference in the raw2image function of libraw_cxx.cpp (bsc#1120498)
  • CVE-2018-5817: Fixed an infinite loop in the unpacked_load_raw function of dcraw_common.cpp (bsc#1120515)
  • CVE-2018-5818: Fixed an infinite loop in the parse_rollei function of dcraw_common.cpp (bsc#1120516)
  • CVE-2018-5819: Fixed a denial of service in the parse_sinar_ia function of dcraw_common.cpp (bsc#1120517)

This update was imported from the SUSE:SLE-15:Update update project.

Список пакетов

openSUSE Leap 15.0
libraw-devel-0.18.9-lp150.2.6.1
libraw-devel-static-0.18.9-lp150.2.6.1
libraw-tools-0.18.9-lp150.2.6.1
libraw16-0.18.9-lp150.2.6.1

Ссылки

Описание

There is a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки

Описание

LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки

Описание

LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки

Описание

LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки

Описание

A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки

Описание

An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки

Описание

An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources.

Затронутые продукты
openSUSE Leap 15.0:libraw-devel-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-devel-static-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw-tools-0.18.9-lp150.2.6.1
openSUSE Leap 15.0:libraw16-0.18.9-lp150.2.6.1
Ссылки
Уязвимость openSUSE-SU-2019:0094-1