AVG-2111 log

Package dcraw
Status Vulnerable
Severity Medium
Type arbitrary code execution
Affected 9.28.0-2
Fixed Unknown
Current 9.28.0-4 [extra]
Ticket Create
Created Tue Jun 29 08:17:14 2021
Issue Severity Remote Type Description
CVE-2021-3624 Medium No Arbitrary code execution
There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed...