Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-3885

Опубликовано: 19 мая 2015
Источник: ubuntu
Приоритет: negligible
EPSS Низкий
CVSS2: 4.3

Описание

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.

РелизСтатусПримечание
artful

not-affected

1.6.8-1
bionic

not-affected

1.6.8-1
cosmic

not-affected

1.6.8-1
devel

not-affected

1.6.8-1
disco

not-affected

1.6.8-1
eoan

not-affected

1.6.8-1
esm-apps/bionic

not-affected

1.6.8-1
esm-apps/focal

not-affected

1.6.8-1
esm-apps/jammy

not-affected

1.6.8-1
esm-apps/noble

not-affected

1.6.8-1

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

9.27-1
cosmic

not-affected

9.27-1
devel

not-affected

9.27-1
disco

not-affected

9.27-1
eoan

not-affected

9.27-1
esm-apps/bionic

not-affected

9.27-1
esm-apps/focal

not-affected

9.27-1
esm-apps/jammy

not-affected

9.27-1
esm-apps/noble

not-affected

9.27-1

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

0.9.1-6
cosmic

not-affected

0.9.1-6
devel

not-affected

0.9.1-6
disco

not-affected

0.9.1-6
eoan

not-affected

0.9.1-6
esm-apps/bionic

not-affected

0.9.1-6
esm-apps/focal

not-affected

0.9.1-6
esm-apps/jammy

not-affected

0.9.1-6
esm-apps/noble

not-affected

0.9.1-6

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

3.15.4-6
cosmic

not-affected

3.15.4-6
devel

not-affected

3.15.4-6
disco

not-affected

3.15.4-6
eoan

not-affected

3.15.4-6
esm-apps/bionic

not-affected

3.15.4-6
esm-apps/focal

not-affected

3.15.4-6
esm-apps/jammy

not-affected

3.15.4-6
esm-apps/noble

not-affected

3.15.4-6

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

16.0~rc3+dfsg2-1
cosmic

not-affected

16.0~rc3+dfsg2-1
devel

DNE

disco

not-affected

16.0~rc3+dfsg2-1
eoan

not-affected

16.0~rc3+dfsg2-1
esm-apps/bionic

not-affected

16.0~rc3+dfsg2-1
esm-apps/focal

not-affected

16.0~rc3+dfsg2-1
esm-apps/jammy

not-affected

16.0~rc3+dfsg2-1
esm-apps/noble

needs-triage

Показывать по

РелизСтатусПримечание
artful

not-affected

0.18.2-1
bionic

not-affected

0.18.2-1
cosmic

not-affected

0.18.2-1
devel

not-affected

0.18.2-1
disco

not-affected

0.18.2-1
eoan

not-affected

0.18.2-1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [0.15.4-1ubuntu0.1]]
esm-infra/bionic

not-affected

0.18.2-1
esm-infra/focal

not-affected

0.18.2-1
esm-infra/xenial

not-affected

0.17.1-1

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
artful

not-affected

bionic

not-affected

cosmic

not-affected

devel

not-affected

disco

not-affected

eoan

not-affected

esm-apps/bionic

not-affected

esm-apps/focal

not-affected

esm-apps/jammy

not-affected

esm-apps/noble

not-affected

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

0.20-3
cosmic

not-affected

0.20-3
devel

DNE

disco

not-affected

0.20-3
eoan

DNE

esm-apps/bionic

not-affected

0.20-3
esm-apps/xenial

not-affected

0.20-3
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03564
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-3885

redhat
больше 10 лет назад

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.

nvd логотип

CVE-2015-3885

nvd
больше 10 лет назад

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.

debian логотип

CVE-2015-3885

debian
больше 10 лет назад

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier ...

github логотип

GHSA-gxxm-8rj8-v8q7

github
больше 3 лет назад

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.

suse-cvrf логотип

SUSE-SU-2025:1380-1

suse-cvrf
10 месяцев назад

Security update for libraw

EPSS

Процентиль: 87%
0.03564
Низкий

4.3 Medium

CVSS2