Security update for libraw
This update for libraw fixes the following issues:
Security issue fixed:
* CVE-2017-14265: A stack based buffer overflow in the xtrans_interpolate function was fixed. [boo#1060163]
* CVE-2017-13735: A floating point exception in the kodak_radc_load_raw function was fixed which could have lead to aborts of programs using libraw on reading malicious files. [bsc#1060321]
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1060163
VUL-0: CVE-2017-14265: libraw: Stack based buffer overflow in the xtrans_interpolate function
bnc#1060321
VUL-1: CVE-2017-13735: libraw: There is a floating point exception in the kodak_radc_load_raw functionin dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack.
