AI Score
Confidence
High
EPSS
Percentile
77.7%
A boundary error within the “quicktake_100_load_raw()” function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to cause a stack-based buffer overflow and subsequently cause a crash.
access.redhat.com/errata/RHSA-2018:3065
github.com/LibRaw/LibRaw/blob/master/Changelog.txt
github.com/LibRaw/LibRaw/commit/9f26ce37f5be86ea11bfc6831366558650b1f6ff
secuniaresearch.flexerasoftware.com/advisories/81000/
secuniaresearch.flexerasoftware.com/secunia_research/2018-3/