Lucene search
SuseOPENSUSE-SU-2019:0008-1HistoryJan 10, 2019 - 12:00 a.m.
Security update for libraw (moderate)
2019-01-1000:00:00
lists.opensuse.org
110
EPSS
0.003
Percentile
70.5%
An update that fixes four vulnerabilities is now available.
Description:
This update for libraw fixes the following issues:
The following security vulnerabilities were addressed:
- CVE-2018-5813: Fixed an error within the “parse_minolta()” function
(dcraw/dcraw.c) that could be exploited to trigger an infinite loop via
a specially crafted file. This could be exploited to cause a
DoS.(boo#1103200). - CVE-2018-5815: Fixed an integer overflow in the
internal/dcraw_common.cpp:parse_qt() function, that could be exploited
to cause an infinite loop via a specially crafted Apple QuickTime file.
(boo#1103206) - CVE-2018-5804,CVE-2018-5816: Fixed a type confusion error in the
identify function (bsc#1097975)
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-8=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.0 | i586 | < - openSUSE Leap 15.0 (i586 x86_64): | - openSUSE Leap 15.0 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.0 | x86_64 | < - openSUSE Leap 15.0 (i586 x86_64): | - openSUSE Leap 15.0 (i586 x86_64):.x86_64.rpm |
Related
openvas
openvas
openSUSE: Security Advisory for libraw (openSUSE-SU-2019:0008-1)
2019-01-11 00:00:00
Fedora Update for mingw-LibRaw FEDORA-2018-baa8315daa
2018-08-15 00:00:00
Mageia: Security Advisory (MGASA-2018-0356)
2022-01-28 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2019:0005-1)
2019-01-07 00:00:00
openSUSE Security Update : libraw (openSUSE-2019-8)
2019-01-11 00:00:00
Fedora 27 : mingw-LibRaw (2018-baa8315daa)
2018-08-15 00:00:00
cve
cve
fedora
fedora
[SECURITY] Fedora 27 Update: mingw-LibRaw-0.18.13-2.fc27
2018-08-14 20:21:25
[SECURITY] Fedora 28 Update: mingw-LibRaw-0.18.13-2.fc28
2018-08-14 21:12:40
prion
prion
Integer overflow
2018-12-07 22:29:00
Code injection
2018-12-07 22:29:00
Integer overflow
2018-12-07 22:29:00
debiancve
debiancve
cvelist
cvelist
mageia
mageia
Updated libraw packages fix security vulnerabilities
2018-09-01 00:11:59
ubuntucve
ubuntucve
osv
osv
redhatcve
redhatcve
nvd
nvd
ubuntu
ubuntu
LibRaw vulnerabilities
2018-12-06 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-12-10 02:02:51
Denial Of Service (DoS)
2018-06-22 11:27:57
suse
suse
Security update for libraw (moderate)
2018-12-29 00:15:57
Security update for libraw (moderate)
2018-08-10 03:09:22
debian
debian
[SECURITY] [DLA 2903-1] libraw security update
2022-01-29 13:18:14