Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for libraw

This update for libraw fixes the following issues:

Security issues fixed:

- CVE-2018-20337: Fixed a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp (bsc#1120519)
- CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of libraw_cxx.cpp (bsc#1120500)
- CVE-2018-20364: Fixed a NULL pointer dereference in the copy_bayer function of libraw_cxx.cpp (bsc#1120499)
- CVE-2018-20363: Fixed a NULL pointer dereference in the raw2image function of libraw_cxx.cpp (bsc#1120498)
- CVE-2018-5817: Fixed an infinite loop in the unpacked_load_raw function of dcraw_common.cpp (bsc#1120515)
- CVE-2018-5818: Fixed an infinite loop in the parse_rollei function of dcraw_common.cpp (bsc#1120516)
- CVE-2018-5819: Fixed a denial of service in the parse_sinar_ia function of dcraw_common.cpp (bsc#1120517)

This update was imported from the SUSE:SLE-15:Update update project.

Fixed bugs
bnc#1120498
VUL-1: CVE-2018-20363: libraw: LibRaw:raw2image in libraw_cxx.cpp has a NULL pointer dereference
bnc#1120499
VUL-1: CVE-2018-20364: libraw: LibRaw:copy_bayer in libraw_cxx.cpp has a NULL pointer dereference
bnc#1120515
VUL-1: CVE-2018-5817: libraw: DoS in unpacked_load_raw function in internal/dcraw_common.cpp
bnc#1120517
VUL-1: CVE-2018-5819: libraw: DoS in parse_sinar_ia function in internal/dcraw_common.cpp
bnc#1120516
VUL-1: CVE-2018-5818: libraw: DoS in parse_rollei function in internal/dcraw_common.cpp
bnc#1120519
VUL-0: CVE-2018-20337: libraw: stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp
bnc#1120500
VUL-0: CVE-2018-20365: libraw: LibRaw:raw2image() in libraw_cxx.cpp has a heap-based buffer overflow
CVE-2018-5818
CVE-2018-20337
CVE-2018-5817
CVE-2018-20365
CVE-2018-20364
CVE-2018-20363
CVE-2018-5819
Selected Binaries
openSUSE Build Service is sponsored by
Places