CVE-2018-5813
- EPSS 2.09%
- Veröffentlicht 07.12.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:27
An error within the "parse_minolta()" function (dcraw/dcraw.c) in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file.
CVE-2018-5815
- EPSS 2.19%
- Veröffentlicht 07.12.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:27
An integer overflow error within the "parse_qt()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file.
CVE-2018-5816
- EPSS 2.11%
- Veröffentlicht 07.12.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:28
An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file (Note: This vulnerability is caused due to a...
CVE-2017-16909
- EPSS 1.99%
- Veröffentlicht 07.12.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 03:17:13
An error related to the "LibRaw::panasonic_load_raw()" function (dcraw_common.cpp) in LibRaw versions prior to 0.18.6 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash via a specially crafted TIFF image.
CVE-2017-16910
- EPSS 1.8%
- Veröffentlicht 07.12.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 03:17:13
An error within the "LibRaw::xtrans_interpolate()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.6 can be exploited to cause an invalid read memory access and subsequently a Denial of Service condition.
CVE-2018-5800
- EPSS 2.55%
- Veröffentlicht 07.12.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:09:25
An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.7 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
CVE-2018-5801
- EPSS 2.04%
- Veröffentlicht 07.12.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:09:26
An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference.
CVE-2018-5802
- EPSS 1.97%
- Veröffentlicht 07.12.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:09:26
An error within the "kodak_radc_load_raw()" function (internal/dcraw_common.cpp) related to the "buf" variable in LibRaw versions prior to 0.18.7 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.
CVE-2018-5807
- EPSS 1.98%
- Veröffentlicht 07.12.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:09:26
An error within the "samsung_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.
CVE-2018-18311
- EPSS 11.68%
- Veröffentlicht 07.12.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:55:40
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.