Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2013-1438

Опубликовано: 19 янв. 2014
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference.

РелизСтатусПримечание
artful

not-affected

2.0.3-1
bionic

not-affected

2.0.3-1
cosmic

not-affected

2.0.3-1
devel

not-affected

2.0.3-1
disco

not-affected

2.0.3-1
eoan

not-affected

2.0.3-1
esm-apps/bionic

not-affected

2.0.3-1
esm-apps/focal

not-affected

2.0.3-1
esm-apps/jammy

not-affected

2.0.3-1
esm-apps/noble

not-affected

2.0.3-1

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

ignored

end of standard support, was needed
cosmic

ignored

end of life
devel

not-affected

9.28-2
disco

not-affected

9.28-2
eoan

not-affected

9.28-2
esm-apps/bionic

needed

esm-apps/focal

not-affected

9.28-2
esm-apps/jammy

not-affected

9.28-2
esm-apps/noble

not-affected

9.28-2

Показывать по

РелизСтатусПримечание
artful

not-affected

0.8.9-3build1
bionic

not-affected

0.8.9-3build1
cosmic

not-affected

0.8.9-3build1
devel

not-affected

0.8.9-3build1
disco

not-affected

0.8.9-3build1
eoan

not-affected

0.8.9-3build1
esm-apps/bionic

not-affected

0.8.9-3build1
esm-apps/focal

not-affected

0.8.9-3build1
esm-apps/jammy

not-affected

0.8.9-3build1
esm-apps/noble

not-affected

0.8.9-3build1

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

not-affected

uses system libraw
disco

DNE

eoan

DNE

esm-apps/xenial

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [4:4.11.1-0ubuntu2]]
esm-infra/focal

DNE

focal

DNE

Показывать по

РелизСтатусПримечание
artful

released

0.15.3-1ubuntu1
bionic

released

0.15.3-1ubuntu1
cosmic

released

0.15.3-1ubuntu1
devel

released

0.15.3-1ubuntu1
disco

released

0.15.3-1ubuntu1
eoan

released

0.15.3-1ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [0.15.3-1ubuntu1]]
esm-infra/bionic

released

0.15.3-1ubuntu1
esm-infra/focal

released

0.15.3-1ubuntu1
esm-infra/xenial

released

0.15.3-1ubuntu1

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

ignored

end of standard support, was needed
cosmic

ignored

end of life
devel

needed

disco

ignored

end of life
eoan

ignored

end of life
esm-apps/bionic

needed

esm-apps/focal

needed

esm-apps/jammy

needed

esm-apps/noble

needed

Показывать по

РелизСтатусПримечание
artful

released

0.19.2-2ubuntu1
bionic

released

0.19.2-2ubuntu1
cosmic

released

0.19.2-2ubuntu1
devel

DNE

disco

released

0.19.2-2ubuntu1
eoan

DNE

esm-apps/bionic

released

0.19.2-2ubuntu1
esm-apps/xenial

released

0.19.2-2ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [0.19.2-2ubuntu1]]
esm-infra/focal

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 65%
0.00479
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2013-1438

redhat
больше 12 лет назад

Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference.

nvd логотип

CVE-2013-1438

nvd
около 12 лет назад

Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference.

debian логотип

CVE-2013-1438

debian
около 12 лет назад

Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in lib ...

github логотип

GHSA-h3x3-43mf-g7c4

github
больше 3 лет назад

Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference.

fstec логотип

BDU:2015-09729

fstec
больше 12 лет назад

Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 65%
0.00479
Низкий

4.3 Medium

CVSS2

Уязвимость CVE-2013-1438