AVG-410

Package libraw
Status Fixed
Severity High
Type multiple issues
Affected 0.18.4-1
Fixed 0.18.5-1
Current 0.19.2-1 [extra]
Ticket None
Created Fri Sep 22 08:26:37 2017
Issue Severity Remote Type Description
CVE-2017-14265 High No Arbitrary code execution
A stack-based buffer overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3 leading to denial of service or...
CVE-2017-13735 Medium No Denial of service
There is a floating point exception in the kodak_radc_load_raw function in dcraw_common.cpp in LibRaw 0.18.2 leading to denial of service.
Date Advisory Package Description
22 Sep 2017 ASA-201709-18 libraw multiple issues