Lucene search
Ubuntu.comUB:CVE-2013-2127HistoryAug 14, 2013 - 12:00 a.m.
CVE-2013-2127
2013-08-1400:00:00
ubuntu.com
ubuntu.com
10
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0.01
Percentile
84.0%
Buffer overflow in the exposure correction code in LibRaw before 0.15.1
allows context-dependent attackers to cause a denial of service (crash) and
possibly execute arbitrary code via unspecified vectors.
Bugs
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710353 (libraw)>
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=711316 (darktable)>
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=711317 (libkdcraw)>
Notes
| Author | Note |
|---|---|
| mdeslaur | only affects 0.15.x darktable embeds 0.14.x libkdcraw embeds 0.15.x on raring+ |
Related
cve
cve
CVE-2013-2127
2013-08-14 15:55:06
nvd
nvd
CVE-2013-2127
2013-08-14 15:55:06
cvelist
cvelist
CVE-2013-2127
2013-08-14 15:00:00
debiancve
debiancve
CVE-2013-2127
2013-08-14 15:55:06
prion
prion
Buffer overflow
2013-08-14 15:55:00
osv
osv
libraw-devel-0.17.2-1.4 on GA media
2024-06-15 00:00:00
gentoo
gentoo
LibRaw, libkdcraw: Multiple vulnerabilities
2013-09-15 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0269)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201309-09
2015-09-29 00:00:00
mageia
mageia
Updated kde packages fix security issues
2013-09-01 16:43:06
nessus
nessus
GLSA-201309-09 : LibRaw, libkdcraw: Multiple vulnerabilities
2013-09-15 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0.01
Percentile
84.0%
Related for UB:CVE-2013-2127