File _patchinfo of Package patchinfo.9683

<patchinfo incident="9683">
    <issue tracker="bnc" id="1097974">VUL-0: CVE-2018-5806: libraw,dcraw: NULL pointer dereference in leaf_hdr_load_raw() function in internal/dcraw_common.cpp</issue>
  <issue tracker="bnc" id="1097973">VUL-0: CVE-2018-5805: libraw,dcraw: Stack-based buffer overflow in quicktake_100_load_raw() function in internal/dcraw_common.cpp</issue>
  <issue tracker="bnc" id="1118894">VUL-0: CVE-2018-5808: libraw: An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.</issue>
  <issue tracker="cve" id="2018-5805"/>
  <issue tracker="cve" id="2018-5806"/>
  <issue tracker="cve" id="2018-5808"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>This update for libraw fixes the following issues:

Security issues fixed:

- CVE-2018-5808: Fixed a stack-based buffer overflow and code execution
  vulnerability in find_green() function internal/dcraw_common.cpp (bsc#1118894).
- CVE-2018-5805: Fixed a boundary error within the quicktake_100_load_raw function (bsc#1097973)
- CVE-2018-5806: Fixed a a NULL pointer dereference in the leaf_hdr_load_raw function (bsc#1097974)
  </description>
  <summary>Security update for libraw</summary>
</patchinfo>